Gökhan Gököz, Developer in Istanbul, Turkey
Gökhan is available for hire
Hire Gökhan

Gökhan Gököz

Verified Expert  in Engineering

Software Developer

Location
Istanbul, Turkey
Toptal Member Since
May 3, 2022

Gökhan has over 15 years of implementation experience in identity management, middleware, and security solutions. A hard-working and determined professional, he works with different products in a process-oriented manner and adapts quickly. During his career, Gökhan has gained both short and long-term contract-based experience working with various customers and in different sectors. With his vast experience, he will be a great addition to any team.

ProgrammingAlgorithmsWeb SecurityTroubleshootingIntegrationSecurityIdentity & Access Management (IAM)WebLogicOracle WebLogic Application ServerMigrationVulnerability ManagementData EncryptionInfrastructure as Code (IaC)OAuthCloud SecuritySailPointAWS SecurityOperating SystemCyberArk

Portfolio

SCF IT Consulting Ltd.
SailPoint, Okta, Oracle Identity Management, Oracle Access Manager (OAM)...
Oracle
Oracle Identity Management, Oracle Access Manager (OAM)...
Oracle
Oracle Identity Management, Oracle Access Manager (OAM), Web Security...

Experience

Java - 20 yearsDatabase Security - 15 yearsOracle Identity Management - 14 yearsIdentity & Access Management (IAM) - 14 yearsOracle Access Manager (OAM) - 14 yearsAmazon Web Services (AWS) - 5 yearsDevSecOps - 5 yearsSailPoint - 4 years

Availability

Part-time

Preferred Environment

SailPoint, Oracle Identity Management, Identity & Access Management (IAM), Python, Amazon Web Services (AWS), DevSecOps, Linux, Oracle Access Manager (OAM), Database Security, Java, OAuth, Security, System-on-a-Chip (SoC), IT Security

The most amazing...

...solution I've developed orchestrates authentication and authorization processes in Oracle Database and is used by many banks and telecom companies.

Work Experience

Founder | Self-employed Senior Solution Architect

2013 - PRESENT
SCF IT Consulting Ltd.
  • Developed and integrated end-to-end identity and access management solutions using various open source or vendor-provided software. Administered and maintained different identity and access management (IAM) products.
  • Implemented and integrated database security solutions with an application layer to meet the GDPR needs, i.e., encryption, data masking, segregation of duties, auditing, privileged account management, and secure authentication and authorization.
  • Designed DecSecOps pipelines to develop, build, test, and deploy secure applications. Implemented and operated these processes in cloud or on-premise environments.
  • Developed modern custom applications for database security solutions to meet the orchestration, administrative, monitoring, and reporting needs.
  • Analyzed and implemented high availability and disaster recovery scenarios of IT infrastructures deployed in existing or new projects. As part of the support services provided, I took part in many disaster recovery tests and tested disaster scenarios.
Technologies: SailPoint, Okta, Oracle Identity Management, Oracle Access Manager (OAM), Apache, Keycloak, CAS, Identity & Access Management (IAM), Amazon Web Services (AWS), Azure, Azure Active Directory, CyberArk, Oracle Internet Directory (OID), Oracle Directory Server Enterprise Edition (ODSEE), Oracle Database, Vault, Oracle Database Vault, Oracle, Oracle Unified Directory (OUD), Java, Python, OpenLDAP, Active Directory Federation, Active Directory Synchronization, Vulnerability Assessment, Penetration Testing, OWASP Zed Attack Proxy (ZAP), OWASP, SonarQube, DevOps, DevSecOps, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), Privileged Access Management (PAM), GDPR, Programming, Databases, Spring Boot, Oracle SOA Suite, Oracle BPM, Oracle Directory, JBoss EAP, Bash Script, Root Cause Analysis, Infrastructure as Code (IaC), AWS DevOps, Docker, OWASP Top 10, Azure Resource Manager (ARM), Azure DevOps Services, YAML, Database Security, Amazon Simple Notification Service (Amazon SNS), AWS CodeArtifact, AWS Security Hub, AWS ALB, AWS CodeDeploy, AWS CodeBuild, AWS CodeCommit, Amazon S3 (AWS S3), AWS CloudFormation, Compliance, Data Encryption, Oracle Label Security (OLS), Oracle Enterprise User Security (EUS), Active Directory (AD), MS Exchange, Windows PowerShell, Integration, Analysis, Apache Maven, Jira, Oracle WebLogic Application Server, Java Security, Architecture, Design, Apache Tomcat, JSON, Oracle Cloud, Kubernetes, OAuth, Cloud Security, CI/CD Pipelines, Network Security, Security, System-on-a-Chip (SoC), Migration, Business Continuity & Disaster Recovery (BCDR), Information Security Management Systems (ISMS), SOC 2, ISO 27001, Vulnerability Management, IT Security, Technical Leadership, Cybersecurity, MySQL

Principal Advanced Customer Support Engineer

2014 - 2018
Oracle
  • Worked for Oracle Advanced Customer Services and carried out remedial and preventive maintenance studies on Oracle Fusion Middleware products and applications running on these products.
  • Conducted vulnerability assessments and penetration tests on customers' critical systems periodically. Prepared reports containing findings and recommendations.
  • Provided enhanced customer support and prepared detailed reports by identifying the problem and analyzing root causes.
Technologies: Oracle Identity Management, Oracle Access Manager (OAM), Oracle WebLogic Application Server, Oracle SOA Suite, Oracle BPM, Oracle ADF, ADF Business Components, Oracle Directory, Apache Tomcat, JBoss EAP, Active Directory Federation, Amazon Web Services (AWS), Azure, Oracle Database, Java, Python, Linux, Bash Script, Troubleshooting, Root Cause Analysis, Vulnerability Assessment, Penetration Testing, Programming, Databases, Spring Boot, Docker, YAML, Database Security, Compliance, Oracle Enterprise User Security (EUS), Active Directory (AD), MS Exchange, Windows PowerShell, Integration, Analysis, GDPR, Oracle, CAS, Oracle Database Vault, Vault, Apache Maven, Subversion (SVN), Java Security, Architecture, Design, JSON, Kubernetes, Cloud Security, CI/CD Pipelines, Network Security, Security, System-on-a-Chip (SoC), Migration, Business Continuity & Disaster Recovery (BCDR), Information Security Management Systems (ISMS), SOC 2, ISO 27001, Vulnerability Management, IT Security, Cybersecurity, MySQL

Senior Security and Middleware Consultant | Contractor

2010 - 2013
Oracle
  • Developed end-to-end integrations for identity and access management projects for customers in the public, telecom, and financial sectors.
  • Led many database security projects, including Oracle Database Vault, Oracle Audit Vault, Oracle Advanced Security, Oracle Label Security, Oracle Enterprise User Security, and DB-IAM integration in the public, telecom, and financial sectors.
  • Provided infrastructure consultancy and architectural support for the WebLogic application server and the Oracle Business Process Management Suite products.
Technologies: Oracle Identity Management, Oracle Access Manager (OAM), Web Security, Java Security, Oracle Database, WebLogic, Oracle SOA Suite, Oracle BPM, Java, Red Hat Linux, Programming, Databases, Spring Boot, Oracle ADF, ADF Business Components, Oracle Directory, Bash Script, Root Cause Analysis, YAML, Database Security, Compliance, Oracle Enterprise User Security (EUS), Active Directory (AD), MS Exchange, Windows PowerShell, Integration, Analysis, GDPR, Privileged Access Management (PAM), Oracle Label Security (OLS), Oracle Database Vault, Oracle, Vault, Apache Maven, Oracle Application Server, Subversion (SVN), Oracle WebLogic Application Server, Architecture, Design, Apache Tomcat, JSON, Cloud Security, CI/CD Pipelines, Network Security, Security, System-on-a-Chip (SoC), Migration, Business Continuity & Disaster Recovery (BCDR), Information Security Management Systems (ISMS), SOC 2, ISO 27001, IT Security, Cybersecurity, MySQL

Technology Consultant

2007 - 2010
Oracle
  • Worked in the architectural team on a three-year public e-transformation project involving Oracle Fusion Middleware and security products.
  • Developed integrations with Oracle Identity Manager, Oracle Access Manager, and Oracle SOA Suite products.
  • Made software development lifecycle (SDLC) integration with open source products, such as Subversion (SVN), Maven, CruiseControl, Arifactory, and Jira.
Technologies: Oracle Database, WebLogic, Identity & Access Management (IAM), Development, Jira, Python, CruiseControl, Artifactory, Subversion (SVN), Oracle Application Server, Oracle Internet Directory (OID), Oracle Directory Server Enterprise Edition (ODSEE), Oracle SOA Suite, Apache Maven, Oracle, Vault, Oracle Database Vault, Oracle Label Security (OLS), Oracle Identity Management, Oracle Access Manager (OAM), Programming, Databases, Oracle ADF, ADF Business Components, Oracle Directory, Bash Script, Root Cause Analysis, Database Security, Compliance, Oracle Enterprise User Security (EUS), Active Directory (AD), MS Exchange, Windows PowerShell, Integration, Analysis, GDPR, Privileged Access Management (PAM), Oracle WebLogic Application Server, Java Security, Architecture, Design, Apache Tomcat, JSON, Security, System-on-a-Chip (SoC), MySQL

N11.com IAM Implementation with SailPoint IdentityIQ

This project involved implementing identity and access management processes on SailPoint IdentityIQ for N11.com, one of the leading eCommerce companies.

As an identity and access management (IAM) architect, I oversaw the architectural design and technical processes. Within the project's scope, the procedures, such as access requests, joiner, leaver, department changes, role matrix, access review, and segregation of duties, were analyzed and designed for personal and non-personal accounts, including service and admin accounts.

I integrated applications such as SAP SuccessFactors, SAP ECC, Active Directory, exchange, CyberArk PAM, Jira, and Slack using SailPoint-ready connectors. In addition, innovative integration infrastructures were created using generic connectors. Thousands of Unix servers were included in IAM processes from a single point by integrating AWX with the generic web service connector. Finally, I provided user, role, and privilege management in Oracle Database using the Generic JDBC connection from a single integration point.

Turkish Naval Forces IAM Implementation with Oracle Identity Manager

The aim of this project is to implement identity and access management processes on Oracle Identity Manager. As an IAM architect, I oversaw the architectural design and technical processes. We designed and implemented the identity management processes by integrating various IT resources. Also, we automated provisioning of users' personal or administrator accounts in IT resources, authorization requests, password management, authorization, and authorization review processes. Finally, we implemented process flows, including complex approvals, notifications, and manual actions.

GDPR Adaptation of Databases

As a security architect, I carried out projects that enabled the GDPR adaptation of corporations in the finance, public, manufacturing, and retail sectors. We wanted to activate the databases' local solutions or security options, integrate them with the application layer, and develop the necessary customizations for orchestration, administration, monitoring, and reporting.

I implemented the Oracle Enterprise User Security (EUS) solution for identity and access management (IAM) and multi-factor authentication (MFA). With this infrastructure, the accounts and roles in all databases were centrally managed on the directory server and integrated with IAM and MFA processes.

Also, we implemented the following solutions to complete this project:

• Transparent data encryption (TDE) solutions for Oracle, Microsoft SQL Server, or MySQL databases for encryption at rest.
• Oracle Redaction, Microsoft SQL Server, or MySQL data definition language for dynamic masking or redaction requirements.
• Oracle Database Vault and Microsoft SQL Server Segregation of Duties (SoD) for segregation of duty requirements.
• Oracle Audit Vault and IBM Guardium for auditing requirements.
• Oracle Label Security (OLS) for data anonymization.

DevSecOps Implementation

As a security architect, I designed and implemented DevSecOps pipelines on AWS, Azure, and on-premise platforms. Also, I integrated various software composition analysis (SCA), static application security testing (SAST), and dynamic application security testing (DAST) tools in pipelines like OWASP dependency-check, SonarQube, and OWASP ZAP.

Akbank DC Migration Project

As a middle-tier architect, I made conceptual and physical designs for a large bank's DC migration of Middleware products.
I led the discovery, planning, execution, and optimization stages of WebLogic, Apache Tomcat, JBoss EAP, SOA/BPM, Directory Server, HTTP server, and Azure Service Bus products during migration.
2003 - 2007

Bachelor of Science Degree in Computer Science and Engineering

Marmara University - Istanbul, Turkey

MARCH 2021 - PRESENT

Oracle Cloud Infrastructure (OCI) Foundations

Oracle

SEPTEMBER 2019 - PRESENT

Red Hat Certified Engineer

Red Hat

SEPTEMBER 2019 - PRESENT

Oracle Certified Professional

Oracle

Languages

Python, Java, Bash Script, DC, PHP, YAML

Frameworks

Spring Boot, Windows PowerShell, Oracle ADF

Libraries/APIs

Java Security, OpenLDAP

Tools

SailPoint, Oracle Access Manager (OAM), Apache Tomcat, Oracle SOA Suite, Oracle Directory, Artifactory, Subversion (SVN), Oracle Internet Directory (OID), Apache Maven, Apache, Keycloak, OWASP Zed Attack Proxy (ZAP), SonarQube, AWS CloudFormation, AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy, Amazon Simple Notification Service (Amazon SNS), Vault, Jira, MS Exchange, Azure DevOps Services

Paradigms

DevSecOps, Penetration Testing, DevOps

Platforms

Oracle Identity Management, Amazon Web Services (AWS), Kubernetes, Linux, Oracle Database, Red Hat Linux, JBoss EAP, Oracle Application Server, AWS ALB, Docker, Oracle, Azure

Storage

Databases, Oracle Cloud, JSON, Amazon S3 (AWS S3), Azure Active Directory, MySQL, Database Security

Other

Identity & Access Management (IAM), Programming, Data Structures, Operating Systems, Algorithms, WebLogic, Development, Design, Architecture, Web Security, Oracle BPM, Oracle WebLogic Application Server, Active Directory Federation, Troubleshooting, Root Cause Analysis, Vulnerability Assessment, CruiseControl, Oracle Directory Server Enterprise Edition (ODSEE), Oracle Database Vault, CAS, Oracle Unified Directory (OUD), OWASP, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), Analysis, Integration, Active Directory (AD), Oracle Enterprise User Security (EUS), Oracle Label Security (OLS), AWS Security Hub, AWS CodeArtifact, Infrastructure as Code (IaC), AWS DevOps, OWASP Top 10, OAuth, Cloud Security, CI/CD Pipelines, Secure Storage, Security, System-on-a-Chip (SoC), Migration, Business Continuity & Disaster Recovery (BCDR), Information Security Management Systems (ISMS), Middleware, Optimization, Planning, Execution, Discovery, Enterprise Service Bus (ESB), Conceptual Design, Physical Design, Vulnerability Management, IT Security, Technical Leadership, Data Encryption, ADF Business Components, Okta, CyberArk, Active Directory Synchronization, Privileged Access Management (PAM), GDPR, Compliance, Azure Resource Manager (ARM), SOC 2, ISO 27001

Industry Expertise

Network Security, Cybersecurity

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring