CISO, VP of Information Security
2019 - PRESENTCyber Electra- Implemented cyber security processes and technologies, providing strategic and tactical guidance on information security, privacy, and compliance programs.
- Led the implementation of security technology projects, relying on my hands-on security and engineering background, and completed them within the allocated security budget.
- Supported the leadership team and the board of directors in security, compliance, and privacy issues.
Technologies: Information Systems, Information Security, Information Audits, Web Security, IoT Security, Cloud Security, Application Security, Risk Management, Threat Modeling, Data Privacy, CISO, CISSP, CISM, ITIL, GRC, Identity & Access Management (IAM), Asset Management, SOC 2, NIST, ISO 27001, Security Audits, Azure Active Directory, Security, Cybersecurity, Windows
Ayhan Tek
Cyber Security Specialist and Developer in Toronto, ON, Canada
Member since November 29, 2022
Ayhan is a cyber security professional experienced in implementing and managing cyber security and DevSecOps programs. He has worked on security projects for different industries, handling virtual CISO, risk assessment and management, threat modeling, and security architecture, audit, and training. He is keen on using SAST and DAST security tools and handling governance, risk, and compliance issues. Ayhan is a CISSP, CISM, TOGAF, and ITIL-certified professional willing to embrace new projects.
Ayhan is now available for hire
Portfolio
- Cyber ElectraInformation Systems, Information Security, Information Audits, Web Security...
Experience
- Information Security 15 years
- Information Security Management Systems (ISMS) 15 years
- Compliance 11 years
- TOGAF 10 years
- CISSP 9 years
- Cloud Security 9 years
- CISO 2 years
Availability
Full-time
Preferred Environment
Information Security, Security, Compliance, PCI, CISO, CISSP, TOGAF, Cloud, Azure Active Directory, Cybersecurity
The most amazing...
...thing I've done was providing strategic, technical, and tactical guidance to implement and enhance end-to-end information security programs.
Employment
Experience
- Security Program Management for a Benefits Carrier
Led the security architecture and program for a not-for-profit benefits carrier. I completed the implementation of security, privacy, and compliance projects within the scope of the company's security program. I also conducted threat risk assessments and privacy impact assessments.
- DevOps Project for a Bank
I have implemented DevSecOps capabilities under the application security program at a well-known bank. Worked as the application security leader to implement secure SDLC and DevOps capabilities in the bank. It involved close collaboration with IT, development, executive management, operations, and QA stakeholders.
- Security and Privacy Policy and Standards Creation
I developed governance, risk, and compliance-related security and privacy artifacts, including policy, standards, processes, and procedures. I also sat at international compliance bodies, such as IEEE, and contributed to creating ISO standards. The last one I developed was the DevOps Standard, and I'm currently working on the Configuration Standard (SBOM).
Skills
Languages
JavaFrameworks
.NETParadigms
DevOps, HIPAA Compliance, ITIL, DevSecOpsPlatforms
Azure, Amazon Web Services (AWS), WindowsStorage
Azure Active DirectoryIndustry Expertise
Security, CybersecurityOther
Information Security, Information Security Management Systems (ISMS), Compliance, PCI, SOC 2, CISO, CISSP, TOGAF, Cloud, Information Systems, Web Security, Cloud Security, Application Security, Risk Management, Threat Modeling, CISM, GRC, Identity & Access Management (IAM), Asset Management, NIST, ISO 27001, Security Audits, Enterprise Architecture, Software Development, Security Architecture, Security Management, Incident Management, Cryptography, IT Governance, Security Design, Information Audits, IoT Security, Data Privacy, Engineering, IT, Budget Management, Service, Architecture, Agile DevOps, Technical Design, Web Technologies, ISO Standards
Education
- Bachelor's Degree in Engineering1985 - 1991METU | Middle East Technical University - Ankara, Turkey
Certifications
- Certified Information Security Manager (CISM)SEPTEMBER 2017 - PRESENTISACA
- Service-oriented ArchitectureJULY 2017 - PRESENTSOA Systems
- ITIL Foundation CertifiedJUNE 2017 - PRESENTITIL
- The Open Group Architecture Framework (TOGAF)MAY 2016 - PRESENTOpen Group
- CISSP – Certified Information Systems Security ProfessionalJANUARY 2013 - PRESENT(ISC)²
- Sun Certified Java DeveloperJUNE 2002 - PRESENTSun Microsystems
