Bilgi Güvenliği Yöneticisi
Job Postings by Position
See AllJob Postings by Filter
Information Security Manager Job Listings
An Information Security Manager develops and implements an organization’s information security strategies. This position includes protecting data, ensuring system security, and creating defense strategies against cyber threats. Job listings typically seek candidates experienced in security management systems, risk analysis, and cybersecurity technologies. Additionally, employers look for professionals with leadership and management skills who can implement security policies effectively.
What Does an Information Security Manager Do?
An Information Security Manager is responsible for protecting an organization’s digital and physical information against threats. Key responsibilities include creating security protocols, monitoring cybersecurity threats, and identifying security vulnerabilities. They also play a role in developing internal security policies, managing security teams, and responding to potential security breaches. They take an active role in areas such as data security, network security, and compliance management.
What Should You Pay Attention to When Reviewing Information Security Manager Job Listings?
When applying for the Information Security Manager position, you should pay special attention to the required technical competencies and security standards listed. Employers typically expect proficiency in standards such as ISO/IEC 27001 and GDPR. It is also important to have knowledge of security management software, network security, and pre- and post-attack monitoring tools listed under required skills and experience. Highlighting these qualifications in your application can strengthen your chances.
What Education and Certifications Are Required for Information Security Manager Positions?
For the Information Security Manager role, a bachelor's or master’s degree in computer engineering or information security is generally required. In addition, industry-recognized certifications such as CISSP, CISM, and CompTIA Security+ are preferred by employers. Having training in security audits and risk analysis can also make candidates stand out.
What Skills Do Employers Look for in Information Security Manager Candidates?
Personal qualities expected for this position include strong leadership, analytical thinking, and crisis management skills. Employers look for candidates who are knowledgeable about current security threats, capable of managing teams, and able to communicate effectively. Strong problem-solving abilities and the capacity to lead decision-making processes are also among the sought-after qualifications.
What Are the Job Opportunities for Information Security Managers?
Information Security Managers can find job opportunities in various sectors, including finance, technology, the public sector, and healthcare. These roles are often available in cybersecurity companies, large technology firms, and government agencies. The growing e-commerce and finance sectors also contribute to the increasing demand for this position.
How Can I Apply for Information Security Manager Job Listings?
When applying for Information Security Manager positions, you should carefully review the requirements in the job listing and highlight relevant security certifications and experience in your resume. You can strengthen your application by providing examples of how you have developed and implemented security policies in previous roles. Additionally, clearly presenting your experience in security management and team leadership can help your application stand out.
In Which Fields Can an Information Security Manager Work?
Professionals in this position can find career opportunities in various sectors. They may work on ensuring data security in technology companies, financial institutions, public sector projects, or the healthcare field. Software companies and e-commerce platforms also require experts specialized in information security. This position provides a strong foundation for a career focused on cybersecurity and data protection.
Which Programming Languages Are Required in Information Security Manager Job Listings?
Information Security Manager positions may require knowledge of specific programming languages. These often include Python, Java, C, and C++. Python, in particular, stands out as an important skill for tasks related to network security, encryption algorithms, and vulnerability detection. Some job listings may also require skills in web application security, firewall management, and penetration testing.
Bilgi Güvenliği Yöneticisi
06.05.2026
İstanbul(Asya) / Türkiye
Deneyim: 6-8 Yıl
Type of Work: Tam Zamanlı
Work Location: İş Yerinde
Job Description
Genel Nitelikler
- Tercihen üniversitelerin Bilgisayar Mühendisliği, Yazılım Mühendisliği, Bilgisayar Bilimleri, Elektrik-Elektronik Mühendisliği veya ilgili bölümlerinden mezun,
- Bilgi güvenliği / siber güvenlik alanında en az 7 yıl deneyimli, tercihen finans veya regüle sektörlerde çalışmış,
- SPK Bilgi Sistemleri Tebliği (VII-128.10), ISO 27001 ve KVKK süreçleri hakkında bilgi sahibi,
- Ağ, sistem ve veri güvenliği konularında deneyimli; güvenlik operasyonlarında aktif rol alabilecek,
- Tercihen iş sürekliliği ve felaket kurtarma senaryoları konusunda bilgi sahibi,
- Firewall, WAF, IPS/IDS, DLP, PAM, SIEM gibi kurumsal güvenlik çözümlerinin yönetimi, firewall kural yönetimi, DLP politika oluşturma ve güvenlik olay analizi konularında deneyimli,
- Zafiyet yönetimi, sızma testleri, risk analizi ve güvenlik değerlendirmeleri konusunda bilgi sahibi,
- Windows ve Linux sistemlerinde güvenlik sıkılaştırma (hardening) konularında bilgi sahibi,
- Raporlama ve dokümantasyon konusunda titiz, üst yönetime sunum yapabilecek iletişim becerisine sahip,
- Tercihen CISSP, CISM, CISA, CEH, ISO 27001 LA sertifikaları veya Bilgi Sistemleri Bağımsız Denetim Lisansından bir ya da birkaçına sahip.
İş Tanımı
- SPK Bilgi Sistemleri Tebliği (VII-128.10) kapsamında kurumun bilgi güvenliği süreçlerini yönetmek ve gerekli raporlamaları gerçekleştirmek,
- Bilgi güvenliği politika, prosedür ve standartlarını oluşturmak, uygulamak ve güncellemek,
- Kurumun bilgi güvenliği risklerini belirlemek, risk analizleri yapmak ve sonuçları üst yönetime raporlamak,
- Firewall, IPS, DLP, PAM, SIEM ve benzeri güvenlik çözümlerinin yönetimi ve konfigürasyonunu gerçekleştirmek,
- SOC/SOAR platformları üzerinden güvenlik olaylarının izlenmesi, analizi ve müdahale süreçlerini yürütmek,
- SIEM/Log yönetimi süreçlerini; kayıt bütünlüğü, zaman damgası ve mevzuat gereklilikleri doğrultusunda yapılandırmak, izlemek ve raporlamak.
- Zafiyet yönetimi ve sızma testleri süreçlerini koordine etmek ve iyileştirme aksiyonlarını takip etmek,
- Bilgi güvenliği kontrollerinin etkinliğini izlemek, iç ve dış denetim süreçlerini (SPK, ISO 27001, bağımsız denetim vb.) yönetmek,
- Hizmet alınan güvenlik firmaları ve tedarikçiler ile koordinasyonu sağlamak, üçüncü taraf güvenlik değerlendirmelerini gerçekleştirmek,
- Güvenlik teknolojilerindeki gelişmeleri takip ederek kurumun güvenlik mimarisinin gelişimine katkı sağlamak.
