Experience

• 

  Vakıfbank

  May 2016 - now

  Network and application security engineer

  Web Application Firewall -120+ WAF Policy -Knowledge of information security concepts, OWASP web application vulnerabilities and web-based attacks. -Creating well-detailed configuration policy such as check all parameters and file types ,URL’s .Managing and creating irules,custom signatures etc .. -BOT and L7Dos Profile -Developing advanced Python and Powerhell script for F5Microsegmentation Project -The entire critical banking system is protected by a micro-segmentation product with well-detailed rules. scripts developed in Python language for automatic inventory changes, etc.)AntiVirus and Anti-Spam Systems -Centralized management of Anti-Virus software. Maintenance and support of McAfee and TrendMicro. Provide security monitoring, event analysis, and countermeasure proposals -Managed, troubleshoot, and deployed McAfee Agent 5.x, All ENS modulesContainer Security -By providing security solutions integrated into DevOps processes, security risks in container environments have been minimized.Email Security Systems -Resolving escalated helpdesk tickets e-mail gateway support on Cisco IronPort including e-mail routing, message tracking, advance malware tracking, content filtering, and policy update as needed responsible for all email servers and managing all needed security features on Cisco IronportIPS devices -Providing technical support and troubleshooting of managed systems and networksTracking security events ,monitoring alerts and managing snort rules.SIEM - Arcsight,Splunk -Creates and develops correlation and detection rules Monitoring and identify any suspicious security events using the Arcsight ESM console and raise a ticket in the soc portal. Investigate and identify events, qualify potential security breaches, raise security incident alerts and perform technical & management escalationBreach and Attack Simulation ToolsDeception and Detection TechnologiesE-Mail-Web APT Products Show less