toptal.com
Contact us: +1.888.867.7001
Burak Çınar, Security Architect Developer in Istanbul, Turkey
Burak Çınar

Security Architect Developer in Istanbul, Turkey

Member since December 23, 2020
Burak is a senior security architect with a passion for aligning security architecture plans and processes with high security standards and business goals. He is known for resolving tough problems and delivering results that improve the security of the company's IT infrastructure. Past roles have included head of engineering and cloud and cyber security architect. At Domino's Pizza, he maintained over $70 million worth of digital systems, including a cloud application, servers, and computers.
Burak is now available for hire
Hire Burak

Portfolio

  • Domino's Pizza
    CyberArk, Cloudflare, Splunk, Imperva Incapsula...
  • Domino's Pizza
    Azure, Azure Resource Manager (ARM), Cloud Security, VPN, Azure Key Vault...
  • Koc University
    AWS, PHP, Oracle, Serverless Architecture, Web Security, WordPress...

Experience

Location

Istanbul, Turkey

Availability

Part-time

Preferred Environment

AWS, Azure, Splunk, SIEM, Firewalls, DevOps

The most amazing...

...project I've implemented was a cyber security analytic platform in under one month, creating visibility for one of the biggest eCommerce systems in Turkey.

Employment

  • Head of Engineering

    2020 - PRESENT
    Domino's Pizza
    • Implemented a vulnerability management program resulting in a 70% reduction in instances of known vulnerabilities.
    • Managed and maintained a large-scale international network consisting of four data centers, 5+ corporate sites, and over 500 retail locations.
    • Tracked, maintained, and inventoried over $70 million worth of digital systems, including a cloud application, servers, and computers.
    • Implemented a company-wide initiative to reduce the number of critical IT system vulnerabilities, which led to zero successful cyberattacks in two months.
    Technologies: CyberArk, Cloudflare, Splunk, Imperva Incapsula, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Vulnerability Management, Vulnerability Assessment, Firewalls, FortiGate, Checkpoints, Amazon Web Services (AWS), Microsoft Azure, Azure DevOps, GitLab CI/CD, NIST, Penetration Testing, Burp Suite, Cloud Security, VPN, Risk Management, Identity & Access Management (IAM), AWS, Kubernetes, Site Reliability Engineering (SRE)

  • Cyber Security Engineer

    2020 - 2020
    Domino's Pizza
    • Completed a senior project in authentication security that cut the security risk of a working website by 70%.
    • Implemented a vulnerability management program resulting in a 95% reduction in instances of known vulnerabilities.
    • Developed a cyber security implementation plan that a big 2 audit firm independently assures, and presented it to the board quarterly.
    • Managed the corporate firewall, improving the response time to implement changes by 50% over a year. Optimized the existing ruleset to decrease its length by 65%, making error-free maintenance easier.
    Technologies: Azure, Azure Resource Manager (ARM), Cloud Security, VPN, Azure Key Vault, Azure Active Directory, Site Reliability Engineering (SRE)

  • Cloud Security Architect

    2014 - 2020
    Koc University
    • Slashed the risk of cyber attacks by 43% using automatic updates and training all 1,450+ employees in information security best practices.
    • Increased user security impacting 2,100 employees across six offices by implementing single sign-on and 2-factor authentication systems.
    • Implemented a new corporate security infrastructure reducing maintenance costs by 66% annually.
    • Administered, deployed, configured, and troubleshot cloud services (AWS, GCP, and the MS Azure platform).
    • Managed SIEM tools, monitored alerts, and performed security incident response activities and log management.
    Technologies: AWS, PHP, Oracle, Serverless Architecture, Web Security, WordPress, Azure Active Directory, Azure Key Vault, Azure Resource Manager (ARM), Networks, Cloud Security, Azure, Kubernetes, Site Reliability Engineering (SRE)

  • System Administration Senior Specialist

    2011 - 2014
    Koc University
    • Oversaw the operating and monitoring of all infrastructure, including 24/7 support (Grafana, Prometheus).
    • Designed architecture, deployed, configured, and troubleshot on cloud environments (AWS, GCP, and Azure).
    • Maintained a secure and reliable server environment with 99,7% uptime for four years.
    • Administered and maintained infrastructure of roughly 2,000 computers, 440 servers for more than four years.
    • Conducted DNS administration (Bind DNS, Amazon R53), root cause analysis, troubleshot complex problems, performance-tuned, resolved operational issues, and interacted with vendors.
    Technologies: Amazon Web Services (AWS), DNS, AWS Route 53, BIND DNS, EMC NetWorker, EMC Avamar, Web Hosting, Grafana, Prometheus, VPN

Experience

  • Cloudflare - Web Application Firewall Transformation

    I completed a senior project in authentication security that cut the security risk of a working website by 70%, added protection for additional DDoS protection, and activated and added custom rules to prevent known attacks.

  • Security Analytic and Automation Platform

    I implemented Splunk Enterprise Security and PaloAlto XOAR solutions to Dominos Russia and Dominos Turkey. It covers seven fabrics, six branch offices, more than 800 stores, and over 50 million customers.

    This implementation helps protect customer data (fraud detection), mitigates threats faster with automated tasks, proactively identifies external threats, and monitors internal systems.

Skills

  • Tools

    Nginx, VPN, GitLab CI/CD, Terraform, AWS CloudFormation, Azure Key Vault, GitLab, AWS ELB, Amazon CloudFront CDN, Amazon Virtual Private Cloud (VPC), Grafana

  • Platforms

    Amazon Web Services (AWS), Azure, Docker, Kubernetes, Burp Suite, WordPress, AWS EC2

  • Storage

    Azure Active Directory, AWS S3

  • Other

    SIEM, Firewalls, Cloudflare, Vulnerability Management, Vulnerability Assessment, Checkpoints, Microsoft Azure, Web Security, Cloud Security, Data Loss Prevention (DLP), Identity & Access Management (IAM), Azure Security, Data Encryption, Office 365, AWS, Site Reliability Engineering (SRE), Single Sign-on (SSO), Infrastructure as Code (IaC), Networks, CyberArk, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), NIST, Threat Modeling, Azure Resource Manager (ARM), Containerization, Risk Management, DNS, AWS Route 53, BIND DNS, Web Hosting, Web Application Firewall (WAF), Load Balancers, Content Delivery Networks (CDN), Splunk Enterprise Security, Threat Analytics, Cloud, Migration, Microsoft Security, SOAR, Palo Alto Demisto, Prometheus

  • Paradigms

    DevOps, Azure DevOps, Penetration Testing, Serverless Architecture, DDoS

  • Industry Expertise

    Security

  • Languages

    Bash Script, Python 3

Certifications

  • AZ-500: Microsoft Azure Security Technologies
    NOVEMBER 2021 - PRESENT
    Microsoft
  • AZ-304: Microsoft Azure Architect Design
    NOVEMBER 2021 - PRESENT
    Microsoft
  • AZ-303: Microsoft Azure Architect Technologies
    NOVEMBER 2021 - PRESENT
    Microsoft
  • Microsoft Certified: DevOps Engineer Expert
    NOVEMBER 2021 - PRESENT
    Microsoft
  • MS-500: Microsoft 365 Security Administration
    OCTOBER 2020 - PRESENT
    Microsoft

To view more profiles

Join Toptal
Share it with others
Hire the top 3% of freelance developers TM