Senior Cybersecurity Specialist

CoreX Holding is a highly diversified, vertically integrated, global industrial conglomerate established in 2024 by Robert Yüksel YILDIRIM after 35 years of his vast industrial, financial, and operational experience at YILDIRIM Group. With financial headquarters in Amsterdam, the Netherlands, and operational headquarters in Istanbul, Türkiye, CoreX is dedicated to creating new success stories through a visionary approach and exponential growth under the leadership and vision of its founder, Robert Yüksel YILDIRIM.

CoreX operates in 9 sectors, including metals & mining, ports & terminals, chemicals, shipping & logistics, green energy, infrastructure & construction, international trading, financial investments, and venture capital. The company is active in 55 countries across 5 continents, employing over 20,000 people globally. As a profit-driven company, CoreX intends to focus on its future growth, utilizing its deep experience and extensive business know-how.

We are looking for a Senior Cybersecurity Specialist to be assigned at our headquarters in Maslak, Istanbul

Qualifications:

• Bachelor’s degree from a university, preferably in Computer Engineering, Cybersecurity, Management Information Systems, Electrical-Electronics, Industrial, or Mathematics Engineering.
• Minimum 5 years of experience in the field of cybersecurity.
• Hands-on experience in Digital Forensics and Incident Response (DFIR), including memory, disk, and network forensics to support post-incident investigations.
• Proficient in SDLC processes with experience in OWASP Top 10, API security, and security controls within microservices architectures.
• Advanced experience in managing Firewall, WAF, IPS, DLP, SIEM, PAM, and vulnerability scanning tools.
• Preferably holds at least one recognized certification such as OSCP, CEH, CISM, or ISO 27001 Lead Auditor.
• Expertise in TCP/IP protocols, network security architectures, and operating system (Windows/Linux) security.
• Strong problem-solving skills, detail-oriented, and capable of cross-functional collaboration with technical teams.
• Proficient in English.

Requirements:

• Define the organization’s cybersecurity strategies while providing and managing Security Operations Center (SOC) technologies such as SIEM, XDR, SOAR, and EDR at an architectural level.
• Integrate security controls into the software development lifecycle (SDLC) and manage application security processes using SAST, DAST, and IAST tools.
• Coordinate or manage end-to-end vulnerability scanning, Cyber Threat Intelligence (CTI), and penetration testing processes to ensure the remediation of critical findings.
• Lead digital forensic investigations and response processes for complex cyberattacks, perform Root Cause Analysis (RCA), and implement preventive measures following breach analyses.
• Design and oversee security architecture components, including network segmentation, cloud security, and identity and access management (IAM/PAM) for new infrastructure and application projects.
• Conduct cybersecurity risk assessments and provide technical compliance controls within the scope of regulations such as ISO 27001, NIS2, and KVKK/GDPR.
• Continuously develop the organization’s defense line by tracking current threat actors, attack techniques (MITRE ATT&CK), and next-generation security technologies.
• Mentoring junior team members and providing technical consultancy to senior management

We look forward to meeting you! 
Many thanks for your attention in advance.