Emre Çamalan

Işık Üniversitesi

Bilgisayar Mühendisliği

2027

İşNet

Cybersecurity Manager and Consultant with 15+ years of experience in enterprise security architecture, network defense, and regulatory compliance. Specialized in firewall optimization (AlgoSec, Cisco ASA, CheckPoint, Palo Alto, Fortigate), SIEM/SOAR systems, endpoint protection (McAfee, Kaspersky), DLP (Forcepoint), WAF (Imperva, Citrix), and NAC (Forescout). Skilled in scripting-based automation (Python, Perl), Linux system hardening, and offensive security testing using Kali Linux and vulnerability scanners. Proven track record in leading security teams and delivering high-impact projects aligned with compliance frameworks such as PCI-DSS and ISO 27001. Certified ISO 27001 Lead Auditor, currently pursuing CISSP certification and a PhD in Cybersecurity and AI, combining technical depth with strategic leadership vision. Core Competencies •Cybersecurity Architecture & Risk Management •Vulnerability Assessments & Maturity Improvement •Security Hardening & Compliance (PCI-DSS, ISO27001, CB DDO, CIS Security) •Technical Expertise: SIEM, SOAR, EDR, WAF, IPS/IDS, Firewalls, PAM, EGW, NAC •Python, Bash, Php & Perl Scripting for Automation

Specialized in firewall optimization (AlgoSec, Cisco ASA, CheckPoint, Palo Alto, Fortigate), SIEM/SOAR systems, endpoint protection (McAfee, Kaspersky), DLP (Forcepoint), WAF (Imperva, Citrix), and NAC (Forescout). Skilled in scripting-based automation (Python, Perl), Linux system hardening, and offensive security testing using Kali Linux and vulnerability scanners. Proven track record in leading security teams and delivering high-impact projects aligned with compliance frameworks such as PCI-DSS and ISO 27001. Certified ISO 27001 Lead Auditor, currently pursuing CISSP certification and a PhD in Cybersecurity and AI, combining technical depth with strategic leadership vision. Core Competencies •Cybersecurity Architecture & Risk Management •Vulnerability Assessments & Maturity Improvement •Security Hardening & Compliance (PCI-DSS, ISO27001, CB DDO, CIS Security) •Technical Expertise: SIEM, SOAR, EDR, WAF, IPS/IDS, Firewalls, PAM, EGW, NAC •Python, Bash, Php & Perl Scripting for Automation

Linux OpenSource Conference (8.2011) İstanbul University OpenSource Conference (04.2015) Yıldırım Beyazıt University Security Conference (03.2017) Işık University Security Conference (10.2021) İstanbul Gelişim University Security Career PathConference (3.2022) 10/12/2024 Google Development Group Conference 01/05/2025 NOHÜ University Security an AI Conference 02/02/2025 Işık University Security Conference 17.10.2025 Infosrmation Leader Meeting İş Bankası 17.11.2025 IBM QRadar / Guardium Meeting

Linux Foundation Rocky Linux Php.net

SENIOR PROFESSIONAL SERVICES CONSULTANT – 18/09/2023 – CURRENT Deliver vendor-side cybersecurity consultancy for enterprise clients in finance, healthcare, and critical infrastructure sectors. Provide expertise in network security hardening, policy optimization, and baseline improvement. •Developed automation scripts in Python and Perl to streamline firewall rulebase validation and change workflows. •Provided actionable recommendations using AlgoSec AFA, FireFlow, AppViz, and Prevasio, increasing baseline compliance scores. •Assisted global clients with remediation planning using CIS Benchmarks and custom security policies. •Supported complex environments involving CheckPoint, FortiGate, Palo Alto, and Cisco firewall ecosystems. •Delivered ongoing analysis and architecture advice for hybrid and cloud-connected infrastructures. •Provided high-level technical support and professional consultancy to international clients from the UK, France, India, and EMEA countries, tailoring solutions to regulatory and infrastructural differences. CYBER SECURITY MANAGER – 01/09/2022 – 18/09/2023 Led the Cyber Security Department, overseeing end-to-end implementation and management of security infrastructures across critical institutions, particularly in the finance and telecom sectors. •Directed a team of cybersecurity engineers to deliver complete security architecture — from product deployment to hardening, monitoring, and incident response. •Successfully passed numerous national and international audits including PCI-DSS, ISO 27001, SOC 2 (3402), CB DDO, and ÖEBSD Bilgi ve İletişim Güvenliği Rehberi. •Spearheaded major enterprise deployments and integrations involving: •Firewalls: CheckPoint, FortiGate, Palo Alto •SIEM/SOAR: IBM QRadar, IBM Resilient •Endpoint Security: McAfee Endpoint, Forcepoint DLP, Kaspersky •DDoS & NAC: Arbor, Forescout NAC •PAM & Proxy: Single Connect PAM, Forcepoint Proxy, Citrix WAF/LB ABOUT ME WORK EXPERIENCE  ALGOSEC – REMOTE, INDIA  İŞNET – İSTANBUL, TÜRKIYE 1 / 9 • Ensured all projects complied with regulatory frameworks and improved overall security maturity. • Facilitated coordination between operations, compliance, and IT to maintain continuous audit readiness.  IŞIK UNIVERSITY – İSTANBUL, TÜRKIYE CYBERSECURITY INSTRUCTOR – 01/02/2021 – CURRENT Deliver graduate-level cybersecurity education as part of Işık University’s Master of Science in Cybersecurity program. Responsible for designing and teaching practical, up-to-date content focused on both foundational and advanced topics. • Lectured on Introduction to Cybersecurity, Network Security, Digital Forensics, and Cybersecurity Attacks & Detection. • Designed hands-on labs and real-world case studies to simulate offensive/defensive scenarios. • Mentored students on research topics aligned with industry needs and emerging threat trends. • Coordinated curriculum updates to reflect evolving best practices and standards in the field.  BARIKAT CYBER SECURITY – ANKARA, TÜRKIYE BARIKAT ACADEMY MANAGER – 01/06/2020 – 01/09/2022 Managed the Barikat Cyber Security Academy, overseeing the design and delivery of advanced cybersecurity training programs for professionals and organizations. • Led a team of instructors in delivering tailored courses aligned with current threat landscapes and industry needs. • Developed structured training content and hands-on labs for both technical and non-technical audiences. • Delivered programs in: • Information Security Systems • Network Security • Software Development Security • Forensic Analysis & Incident Response • Ethical Hacking & Penetration Testing • Cybersecurity Awareness for Enterprise Users • Fostered continuous knowledge sharing and mentorship among instructors to maintain curriculum relevance.  BARIKAT CYBER SECURITY – ANKARA, TÜRKIYE SECURITY CONSULTANCY DEPARTMENT MANAGER – 01/02/2019 – 01/06/2020 Promoted to lead the department after serving as a senior consultant. Oversaw the delivery of cybersecurity consultancy services for major clients across public and private sectors. • Managed and mentored a team of consultants delivering advanced services including architecture reviews, hardening assessments, and compliance audits. • Acted as a technical lead for key accounts, particularly in government and finance. • Drove alignment of consulting practices with evolving standards such as ISO 27001, PCI-DSS, and CB DDO. • Led implementation and optimization projects across a broad security technology stack, including: • Firewalls: CheckPoint, Palo Alto • SIEM/SOAR: McAfee, IBM QRadar • Endpoint & Email Security: McAfee Endpoint, Email Gateway, Web Proxy, IPS • NAC & DDoS: Forescout NAC, Arbor DDoS • Proxy & WAF: Forcepoint Proxy, Imperva WAF • Threat Simulation: Picus, Honeypots • Infrastructure: Linux (CentOS, Red Hat, Ubuntu, Debian), Windows AD • Antivirus: Kaspersky AV • Coordinated cross-functional engagements across sectors and ensured successful delivery of high-stakes engagements. • Championed internal knowledge-sharing initiatives and developed reusable technical documentation templates to accelerate onboarding and delivery.  ANKARA YILDIRIM BEYAZIT UNIVERSITY – ANKARA, TÜRKIYE VISITING INSTRUCTOR – 01/01/2018 – 01/06/2020 Taught undergraduate cybersecurity courses in the Computer Engineering Department over four academic semesters. Focused on blending theory with practical, lab-based instruction to foster real-world readiness in students. • Designed and delivered courses including: • Fundamentals of Cybersecurity • Digital Forensics • Network Security 2 / 9 • Ethical Hacking • Secure Software Development • Emphasized hands-on lab activities, real-world attack simulations, and blue-team/defense strategies. • Mentored students on project-based learning and research assignments aligned with industry needs. • Collaborated with faculty to update curriculum and ensure alignment with emerging technologies and standards.  BARIKAT CYBER SECURITY – ANKARA, TÜRKIYE INFORMATION SECURITY CONSULTANT – 01/10/2016 – 01/02/2019 Provided end-to-end cybersecurity consultancy services for over 20 organizations, focusing on improving overall security posture and compliance alignment. Delivered hands-on implementation and advisory services in complex, multi-vendor enterprise environments. • Conducted detailed architecture assessments, risk analyses, and remediation planning across diverse sectors. • Implemented system hardening and topology optimization to meet evolving threat landscapes and compliance mandates. • Delivered consultancy on a wide range of security technologies, including: • Firewalls: CheckPoint, Palo Alto • SIEM/SOAR: McAfee, IBM QRadar • Endpoint & Email Security: McAfee Endpoint, Email Gateway, Web Proxy, IPS • NAC & DDoS: Forescout NAC, Arbor DDoS • Proxy & WAF: Forcepoint Proxy, Imperva WAF • Threat Simulation: Picus, Honeypots • Infrastructure: Linux (CentOS, Red Hat, Ubuntu, Debian), Windows AD • Antivirus: Kaspersky AV • Advised clients on compliance-driven transformation efforts, particularly for PCI-DSS, ISO 27001, and internal government frameworks. • Delivered high-impact workshops, architecture blueprints, and technical mentoring during consultancy engagements.  BARIKAT CYBER SECURITY – ANKARA, TÜRKIYE INFORMATION SECURITY ENGINEER – 01/07/2015 – 01/10/2016 As an engineer, I managed, developed, and implemented security policies for a wide range of cyber security products in large institutions under my responsibility. My expertise covered the following technologies: • Checkpoint Firewall • McAfee SIEM • McAfee Endpoint / Email Gateway, Web Proxy, IPS • Forcepoint Proxy • Imperva WAF • Picus • Honeypot • Linux (CentOS, Red Hat, Ubuntu, Debian) • Windows Active Directory • Kaspersky Antivirus Through my efforts, I ensured the effective operation and integration of these products, contributing to the overall security posture of the organizations I worked with.  ARÇELIK A.Ş. RESEARCH AND DEVELOPMENT ENGINEER – 01/04/2014 – 01/07/2015 Held multiple technical roles in the global R&D department, contributing to infrastructure modernization, software engineering, and compliance initiatives. • Served as a DevOps Engineer, managing development and maintenance of distributed systems on Windows, Ubuntu, and CentOS platforms. • Led the design and implementation of a large-scale Big Data platform using the Hadoop ecosystem (Hadoop, HBase, Hive, HCat), acting as Project Manager for delivery. • Conducted internal audits and provided operational support for adherence to standards including PCI-DSS, ISO 27001, ISO 22000, and ISO 22301. • Supported the development and certification of the company’s Cash Register (OKC) system, contributing to compliance and performance optimization. • Collaborated with cross-functional teams in data engineering, compliance, and embedded systems to align R&D objectives with business goals. 3 / 9  INFORCEPT NETWORKS – ANKARA, TÜRKIYE LINUX/UNIX SYSTEM AND NETWORK ENGINEER – 01/02/2012 – 01/04/2014 Worked as a full-stack Network and Systems Engineer, specializing in Linux/FreeBSD infrastructure and automation. Focused on performance optimization, high availability, and DevOps-oriented scripting across enterprise systems. • Developed monitoring and automation scripts using Bash and Python to support infrastructure efficiency. • Maintained and configured open-source monitoring tools including Nagios and Cacti for proactive alerting and resource tracking. • Installed, optimized, troubleshot various operating systems including CentOS, RHEL, FreeBSD, and Ubuntu. • Administered core networking protocols and services: TCP/IP, VLANs, routing, VoIP, and switching. • Designed and maintained backend systems involving MySQL, PostgreSQL, and SQLite3. • Collaborated on DevOps practices that improved deployment pipelines, system uptime, and operational scalability. This role laid the groundwork for robust Linux engineering and reinforced best practices in scripting and network reliability.  NANOMAGNETICS INSTRUMENTS – ANKARA, TÜRKIYE SOFTWARE DEVELOPER – 01/06/2011 – 01/02/2012 Contributed to the design and implementation of software for scientific instruments focused on nanotechnology and image processing. • Developed computer-aided control and visualization software for nanotechnology measurement devices. • Focused on image processing algorithms and signal visualization using C#. • Collaborated with hardware engineers to ensure seamless software-device integration. • Participated in scientific research efforts by delivering functional prototypes and visualization tools for lab analysis. This role marked a transition from academic programming to practical, research-driven software development in a high-tech hardware environment.  DERUNKAND GMBH – DUISBURG, GERMANY SOFTWARE DEVELOPER – 01/06/2010 – 01/09/2010 Worked as a full-stack developer in a multinational environment, contributing to various software development projects during a summer internship in Germany. • Developed web, desktop, and mobile applications using C#, PHP, and other necessary languages. • Built dynamic websites and internal business tools tailored to client requirements. • Supported cross-platform development initiatives aligned with German SME technology needs. • Gained practical experience in agile development environments and international project collaboration. This internship provided foundational exposure to international software development workflows and multi-platform application delivery.  TÜBITAK UZAY – ANKARA, TÜRKIYE COMPUTER ENGINEER INTERN – 07/2009 – 09/2009 • Developed Java-based desktop applications using AWT and Swing libraries, gaining hands-on experience in GUI design and event-driven programming. • Worked in a Linux environment (Kubuntu 10.1 & SUSE 9), improving proficiency in cross-platform development and troubleshooting. • Collaborated with team members to debug, optimize, and enhance application performance. • Gained exposure to software development lifecycle (SDLC) and best practices in coding standards.