Ömer Faruk Koc

-Performing and reporting on vulnerability tests with GVM/OpenVAS. -Installation and integration of ElasticStack (ElasticSearch, Logtash, Kibana). Monitoring SIEM events through ElasticStack. -Execution of Business Analysis tasks -Management of the processes related to the strengthening of the IT infrastructure within the scope of the Mejuvante internal project -Conceptual as well as practical activities in IT security management and IT security operations -Technical security such as (SIEM/SOC)

-Conduct core information security activities: SIEM, Threat Intelligence, Vulnerability Management, Education & Awareness, Malware Detection, Incident Response, Network Monitoring and Log Analysis. -Monitor and analyze SIEM logs and alerts through QRadar-Splunk. -Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event. -Analyze malware and virus attacks and phishing incidents

-Daily open source research, data collection, classification of information, analysis, evaluation and reporting -Efforts to identify and eliminate the vulnerabilities of the websites of public institutions through technical personnel. -Preparing reports for risk and threat assessment, detection and implementation of possible solutions -Taking part in bilateral/multilateral negotiations, preparation of report and memorandums of understanding regarding the said meetings.

Die Weiterbildung umfasst folgende Fachbereiche: 1)Einführung in die Netzwerkforensik – Analyse von Netzwerkverkehr zur Erkennung von Sicherheitsvorfällen 2)Grundzüge des System-Pentestings – Grundlagen ethischer Hacking-Methoden – Schwachstellenanalyse und praktische Angriffssimulationen 3)Betriebssysteme, Rechnernetze und verteilte Systeme – Aufbau und Funktionsweise moderner IT-Infrastrukturen 4)Einführung in Datenschutz und IT-Sicherheit – Rechtliche Grundlagen (z. B. DSGVO)