×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security

Senior Information Security Engineer; Remote

Remote / Online - Candidates ideally in
Marmara Bölgesi, Turkey (Türkiye)
Listing for: Insider One
Remote/Work from Home position
Listed on 2026-04-29
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 300000 - 400000 TRY Yearly TRY 300000.00 400000.00 YEAR
Job Description & How to Apply Below
Position: Senior Information Security Engineer (Remote)

We are looking for a Security Engineer to enhance our information security program, ensure compliance, and protect data across our AWS environments.

Responsibilities
  • Drive the implementation, maintenance, and continuous improvement of the ISO 27001 Information Security Management System (ISMS), including control maturity tracking and audit readiness.
  • Support SOC 2 Type II compliance efforts, including control implementation, evidence collection, and audit coordination.
  • Conduct and document internal audits, manage findings, and follow up on remediation plans across teams.
  • Own and evolve the company‑wide risk management program, including risk register, scoring methodology, risk acceptance, and exception processes.
  • Provide governance and security oversight for AWS environments, including cloud security posture, access controls, and configuration baselines.
  • Collaborate with Red Team and Blue Team to track, prioritise, and close technical security findings.
  • Maintain, update, and enforce security policies, standards, and procedures across the organization.
  • Design and execute security awareness and training programmes tailored to different roles (engineering, ops, business).
  • Lead third‑party/vendor security assessments, including risk evaluation, tiering, and continuous monitoring.
  • Support and coordinate security incident handling, reporting, and post‑incident review processes.
  • Contribute to data protection and privacy governance (KVKK, GDPR), including DPIA processes and data lifecycle management.
  • Drive AI / LLM governance practices, including secure usage policies, data exposure controls, and risk assessments for AI tools.
  • Act as a security consultant to business units and engineering teams, supporting secure architecture, design reviews, and risk‑based decision making.
  • Contribute to security architecture and design review processes, including threat modelling and secure design guidance.
  • Coordinate and enhance business continuity and disaster recovery (BCP/DR) processes, including testing, documentation, and continuous improvement.
Qualifications
  • Strong knowledge of ISO 27001, ISMS processes, internal audits, and control frameworks.
  • Hands‑on experience with risk management practices, including risk identification, scoring, and mitigation tracking.
  • Experience in Business Continuity Management (BCM) and disaster recovery planning.
  • Solid understanding of AWS services and cloud security governance, including IAM, logging, and baseline hardening.
  • Familiarity with SOC 2 Type II framework and control domains.
  • Understanding of data security concepts, including data classification, data inventory, and data protection mechanisms.
  • Experience with vendor security and third‑party risk management processes.
  • Knowledge of privacy regulations such as KVKK and GDPR, including practical implementation.
  • Familiarity with AI/LLM risks and governance concepts is a strong plus.
  • Strong documentation and reporting skills for audits, compliance, and executive visibility.
  • Experience in responding to customer security questionnaires and audits.
Soft Skills & Expectations
  • Strong analytical thinking and ability to assess both technical and business risks.
  • Ability to take ownership of security domains and drive initiatives end‑to‑end.
  • Excellent written and verbal communication skills in English.
  • Strong collaboration skills with both technical (engineering, Dev Ops) and non‑technical teams.
  • Ability to understand and communicate the business impact of security decisions.
  • Capable of evaluating the security posture across cloud, application, endpoint, and data layers.
  • Comfortable acting as a trusted advisor and consultant to internal stakeholders.
  • Proactive mindset with a focus on continuous improvement.
Additional Expectations
  • Willingness to provide on‑call support for security‑related incidents when necessary.
  • Ownership of security projects from planning to execution and closure.
  • Ability to track, validate, and close findings from audits, pentests, and internal reviews.
  • Experience working with ticketing systems (Jira, etc.) to manage security tasks and follow‑ups.
  • Actively contributes to team collaboration, knowledge sharing, and process improvement.
  • Ability to…
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search