Gökhan Gököz
Verified Expert in Engineering
Software Developer
Istanbul, Turkey
Toptal member since May 3, 2022
Gökhan has over 15 years of implementation experience in identity management, middleware, and security solutions. A hard-working and determined professional, he works with different products in a process-oriented manner and adapts quickly. During his career, Gökhan has gained both short and long-term contract-based experience working with various customers and in different sectors. With his vast experience, he will be a great addition to any team.
Portfolio
Experience
- Java - 20 years
- Database Security - 15 years
- Oracle Identity Management - 14 years
- Identity & Access Management (IAM) - 14 years
- Oracle Access Manager (OAM) - 14 years
- Amazon Web Services (AWS) - 5 years
- DevSecOps - 5 years
- SailPoint - 4 years
Availability
Preferred Environment
SailPoint, Oracle Identity Management, Identity & Access Management (IAM), Python, Amazon Web Services (AWS), DevSecOps, Linux, Oracle Access Manager (OAM), Database Security, Java, OAuth, Security, System-on-a-Chip (SoC), IT Security
The most amazing...
...solution I've developed orchestrates authentication and authorization processes in Oracle Database and is used by many banks and telecom companies.
Work Experience
Founder | Self-employed Senior Solution Architect
SCF IT Consulting Ltd.
- Developed and integrated end-to-end identity and access management solutions using various open source or vendor-provided software. Administered and maintained different identity and access management (IAM) products.
- Implemented and integrated database security solutions with an application layer to meet the GDPR needs, i.e., encryption, data masking, segregation of duties, auditing, privileged account management, and secure authentication and authorization.
- Designed DecSecOps pipelines to develop, build, test, and deploy secure applications. Implemented and operated these processes in cloud or on-premise environments.
- Developed modern custom applications for database security solutions to meet the orchestration, administrative, monitoring, and reporting needs.
- Analyzed and implemented high availability and disaster recovery scenarios of IT infrastructures deployed in existing or new projects. As part of the support services provided, I took part in many disaster recovery tests and tested disaster scenarios.
Principal Advanced Customer Support Engineer
Oracle
- Worked for Oracle Advanced Customer Services and carried out remedial and preventive maintenance studies on Oracle Fusion Middleware products and applications running on these products.
- Conducted vulnerability assessments and penetration tests on customers' critical systems periodically. Prepared reports containing findings and recommendations.
- Provided enhanced customer support and prepared detailed reports by identifying the problem and analyzing root causes.
Senior Security and Middleware Consultant | Contractor
Oracle
- Developed end-to-end integrations for identity and access management projects for customers in the public, telecom, and financial sectors.
- Led many database security projects, including Oracle Database Vault, Oracle Audit Vault, Oracle Advanced Security, Oracle Label Security, Oracle Enterprise User Security, and DB-IAM integration in the public, telecom, and financial sectors.
- Provided infrastructure consultancy and architectural support for the WebLogic application server and the Oracle Business Process Management Suite products.
Technology Consultant
Oracle
- Worked in the architectural team on a three-year public e-transformation project involving Oracle Fusion Middleware and security products.
- Developed integrations with Oracle Identity Manager, Oracle Access Manager, and Oracle SOA Suite products.
- Made software development lifecycle (SDLC) integration with open source products, such as Subversion (SVN), Maven, CruiseControl, Arifactory, and Jira.
Experience
N11.com IAM Implementation with SailPoint IdentityIQ
As an identity and access management (IAM) architect, I oversaw the architectural design and technical processes. Within the project's scope, the procedures, such as access requests, joiner, leaver, department changes, role matrix, access review, and segregation of duties, were analyzed and designed for personal and non-personal accounts, including service and admin accounts.
I integrated applications such as SAP SuccessFactors, SAP ECC, Active Directory, exchange, CyberArk PAM, Jira, and Slack using SailPoint-ready connectors. In addition, innovative integration infrastructures were created using generic connectors. Thousands of Unix servers were included in IAM processes from a single point by integrating AWX with the generic web service connector. Finally, I provided user, role, and privilege management in Oracle Database using the Generic JDBC connection from a single integration point.
Turkish Naval Forces IAM Implementation with Oracle Identity Manager
GDPR Adaptation of Databases
I implemented the Oracle Enterprise User Security (EUS) solution for identity and access management (IAM) and multi-factor authentication (MFA). With this infrastructure, the accounts and roles in all databases were centrally managed on the directory server and integrated with IAM and MFA processes.
Also, we implemented the following solutions to complete this project:
• Transparent data encryption (TDE) solutions for Oracle, Microsoft SQL Server, or MySQL databases for encryption at rest.
• Oracle Redaction, Microsoft SQL Server, or MySQL data definition language for dynamic masking or redaction requirements.
• Oracle Database Vault and Microsoft SQL Server Segregation of Duties (SoD) for segregation of duty requirements.
• Oracle Audit Vault and IBM Guardium for auditing requirements.
• Oracle Label Security (OLS) for data anonymization.
DevSecOps Implementation
Akbank DC Migration Project
I led the discovery, planning, execution, and optimization stages of WebLogic, Apache Tomcat, JBoss EAP, SOA/BPM, Directory Server, HTTP server, and Azure Service Bus products during migration.
Education
Bachelor of Science Degree in Computer Science and Engineering
Marmara University - Istanbul, Turkey
Certifications
Oracle Cloud Infrastructure (OCI) Foundations
Oracle
Red Hat Certified Engineer
Red Hat
Oracle Certified Professional
Oracle
Skills
Libraries/APIs
Java Security, OpenLDAP
Tools
SailPoint, Oracle Access Manager (OAM), Apache Tomcat, Oracle SOA Suite, Oracle Directory, Artifactory, Subversion (SVN), Oracle Internet Directory (OID), Apache Maven, Oracle Database Vault, Apache, Keycloak, OWASP Zed Attack Proxy (ZAP), SonarQube, AWS CloudFormation, AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy, Amazon Simple Notification Service (SNS), Vault, Jira, Microsoft Exchange, Azure DevOps Services
Languages
Python, Java, Bash Script, DC, PHP, YAML
Frameworks
Spring Boot, Windows PowerShell, Oracle ADF
Paradigms
DevSecOps, Penetration Testing, DevOps
Platforms
Oracle Identity Management, Amazon Web Services (AWS), Kubernetes, Linux, Oracle Database, Red Hat Linux, JBoss EAP, Oracle Application Server, AWS ALB, Docker, Oracle, Azure
Storage
Databases, Oracle Cloud, JSON, Amazon S3 (AWS S3), Azure Active Directory, MySQL, Database Security
Industry Expertise
Network Security, Cybersecurity
Other
Identity & Access Management (IAM), Programming, Data Structures, Operating Systems, Algorithms, WebLogic, Development, Design, Architecture, Web Security, Oracle BPM, Oracle WebLogic Application Server, Active Directory Federation, Troubleshooting, Root Cause Analysis, Vulnerability Assessment, CruiseControl, Oracle Directory Server Enterprise Edition (ODSEE), CAS, Oracle Unified Directory (OUD), OWASP, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), Analysis, Integration, Active Directory (AD), Oracle Enterprise User Security (EUS), Oracle Label Security (OLS), AWS Security Hub, AWS CodeArtifact, Infrastructure as Code (IaC), AWS DevOps, OWASP Top 10, OAuth, Cloud Security, CI/CD Pipelines, Secure Storage, Security, System-on-a-Chip (SoC), Migration, Business Continuity & Disaster Recovery (BCDR), Information Security Management Systems (ISMS), Middleware, Optimization, Planning, Execution, Discovery, Enterprise Service Bus (ESB), Conceptual Design, Physical Design, Vulnerability Management, IT Security, Technical Leadership, Data Encryption, ADF Business Components, Okta, CyberArk, Active Directory Synchronization, Privileged Access Management (PAM), GDPR, Compliance, Azure Resource Manager (ARM), SOC 2, ISO 27001
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring