Burak Çınar
Verified Expert in Engineering
DevSecOps Architect Developer
Burak是一名高级安全架构师,他热衷于将安全架构计划和流程与高安全标准和业务目标结合起来. 他以解决棘手问题和提供改善公司IT基础设施安全性的结果而闻名. Burak过去的职位包括工程主管、云和网络安全架构师. At Domino's Pizza, Burak维护的数字系统价值超过7000万美元, including a cloud application, servers, and computers.
Portfolio
Experience
Availability
Preferred Environment
Amazon Web Services (AWS), Azure, DevOps, DevSecOps, Web App Security, Cloud, Cybersecurity, Security Architecture, IT Security, CISSP, DHCP, Windows PowerShell, Kerberos, Data Encryption, Secure Code Best Practices, IaaS, Scalability, Orchestration, Microsoft SQL Server, Data Synchronization, Cloud Engineering, Databases, Windows Subsystem for Linux (WSL), Hyper-V, Application Security, Server Infrastructure, Troubleshooting, Linux, Unix, Unix Shell Scripting, Email Systems, Domains & Hosting, Email Delivery, Email, Email Marketing, SMTP, AWS VPN, Network Security, Networks, SOC 2, GDPR, Data Loss Prevention (DLP), OpenVPN, Artificial Intelligence (AI), Monitoring, Configuration Management, Continuous Integration (CI), Confluence, Jira, WordPress Installation, Leadership
The most amazing...
...我在一个月内完成的项目是一个网络安全分析平台, 为土耳其最大的电子商务系统之一创造了知名度.
Work Experience
Lead Security Systems Engineer
EPAM Systems
- 领导应用程序迁移和数字转换中的关键安全计划,通过集成先进的工具和方法确保健壮的应用程序安全性.
- Conducted comprehensive security engineering tasks, focusing on application-level security, 通过严格的访问控制和安全审计,导致漏洞事件减少25%.
- 与DevOps团队合作,将安全性嵌入到开发生命周期中, 强调预防和应对应用程序安全威胁的重要性.
- Oversaw the full project security lifecycle, 强调安全应用程序体系结构的开发, 在遵从行业安全标准方面提高了35%.
- 在传达复杂的安全概念方面发挥了关键作用, aiding in pre-sales discussions, and delivering specialized training, 使团队在应用程序安全协议方面的熟练程度提高了15%.
Senior Security Engineer
Arizona State University
- 设计并实现了高度安全的AWS和Azure基础设施, 结合健壮的安全实践和技术控制. 制定和执行事件响应计划,以提高系统安全性.
- 制定和执行事件响应计划,以提高系统安全性.
- Strengthened data protection in the cloud, implementing encryption and other security controls, reducing data breaches by 40%.
- 在国际环境中管理利益相关者关系, 确保安全计划和策略的一致性.
- DevSecOps管道中的集成安全工具,特别是GitHub, AWS CodePipeline和Snyk.
- 管理和维护各种Linux发行版, ensuring system reliability, security, and efficiency.
- 使用Cloudwatch日志和SIEM工具(如Datadog和ELK)解决从部署到应用程序功能的各种问题.
Senior Security Specialist
BCG
- 托管安全自动化工具,使用AWS安全服务自动化安全控制.
- 通过引入促进安全开发实践的技术标准改进了应用程序安全程序.
- 为460多个公共云帐户开发了一个用于安全自动化的Terraform脚本.
- 管理超过460个公共云帐户的IAM流程, improving user access management efficiency by 25%.
- Executed a secure cloud migration strategy, 降低潜在风险,确保零停机时间的平稳过渡.
- 为多云环境实现了健壮的安全措施, 提高整体安全态势,减少35%的事故.
Head of Engineering
Domino's Pizza
- 领导将公司的内部部署基础设施成功迁移到AWS, enhancing scalability, security, and cost savings.
- Implemented advanced data protection strategies, 使数据分类合规性提高50%,并显著减少数据泄露.
- Directed the DLP Program, 监督关键保护措施和飞行员的部署, 是什么导致70%的成功率达到目标业务成果和价值交付目标.
- Implemented advanced data protection strategies, 使数据分类合规性提高50%,并显著减少数据泄露.
- Developed a comprehensive technical DLP roadmap, 与企业架构保持一致,并将检测和防止数据丢失的效率提高30%.
- 利用安全设计方面的专业知识实现端到端安全解决方案, 使整体数据安全和防丢失能力提高35%.
- 在DLP建立持续改进的文化, 紧跟行业趋势,整合新兴技术, 使系统抵御新威胁的能力每年提高20%.
- 管理和维护跨三个数据中心的多服务器基础设施, 使系统效率和可靠性提高15%. 与现场支持团队协调,确保最佳的服务器性能和正常运行时间.
- 通过跨服务器群的操作系统和应用程序的健壮补丁,增强了35%的系统安全性,并减少了50%的漏洞暴露, ensuring a secure, compliant IT environment.
- 编排物理数据中心基础设施到云环境(Azure和AWS)的复杂迁移, ensuring a scalable, 具有改进的数据可访问性和系统弹性的经济高效的转换.
Cybersecurity Engineer
Domino's Pizza
- 使用Snyk在整个开发到生产链中开发了具有CI/CD的DevSecOps文化, Trivy, and Docker Bench for Security.
- 在AWS云环境中使用Harden,符合NIST、CIS benchmark、PCI标准.
- 完成认证安全高级项目,将正常运行网站的安全风险降低70%.
- Implemented a vulnerability management program, 将已知漏洞实例减少95%.
- 管理公司防火墙,在一年内将实现更改的响应时间缩短了50%. 优化现有规则集,将其长度减少65%,使无错误维护更容易.
- 根据行业标准和基准构建和维护加固的操作系统映像, such as the CIS and OpenSCAP ecosystems.
- 集成尖端威胁和风险保护策略, 导致高级持续性威胁减少50%,并增强整体数据安全性.
- 将DLP解决方案无缝集成到现有IT基础架构中, 从而使操作效率提高30%,集成成本降低25%.
- Implemented advanced data protection strategies, 使数据分类合规性提高50%,并显著减少数据泄露.
- Evaluated and selected optimal DLP tools, 整体数据保护效率提高20%,工具相关支出减少15%.
Cloud Security Architect
Koç University
- 使用Ansible和Terraform的强制自动化过程, reducing deployment time and manual errors.
- 使用自动更新和培训将网络攻击的风险降低了43%,450+ employees in information security best practices.
- Increased user security impacting 2,通过实施单点登录和双因素身份验证系统,在六个办公室的100名员工.
- 实施新的企业安全基础设施,每年减少66%的维护成本.
- Administered, deployed, configured, and troubleshot cloud services, including AWS, GCP, and the Microsoft Azure platform.
- Managed SIEM tools, monitored alerts, 并执行安全事件响应活动和日志管理.
- Managed a diverse portfolio of security solutions, including FortiGate, Check Point, F5 WAF, and Pulse Secure products.
- Upgraded existing security solutions, 数据丢失检测效率提高25%,预防机制改进20%.
- 与IT安全团队合作,为两个客户端项目推出Azure Information Protection, 实现90%的数据分类准确率,并将数据保护合规性提高55%.
- Revolutionized the DLP architecture, 将检测能力提高45%,将误报率降低30%, thereby streamlining data protection processes.
System Administration Senior Specialist
Koç University
- 监督所有基础设施的运行和监控, including 24/7 support in Grafana and Prometheus.
- Designed the architecture and deployed, configured, and troubleshot on cloud environments, including AWS, Google Cloud Platform (GCP), and Azure.
- 管理和维护了大约2个的基础设施,4年多来,000台电脑和440台服务器. 开发和实现自动化脚本和工作流, 减少人工干预,加快流程.
- Deployed, patched, and monitored high-traffic production Linux, Apache, MySQL, and PHP (LAMP) stacks, NGINX, Varnish, 和Squid Proxy根据runbook,并确保其可用性.
- Played a pivotal role in system design, specializing in operating system tuning, web server optimization, and application architecting, leading to a 25% improvement in system response times.
- 监督公共云和VMware环境中新基础设施的实施. 对VMware vSphere环境的容量进行监控、故障处理和规划.
- 实施性能调优措施以优化系统效率和资源利用率.
- 为基础设施自动化开发和优化Ansible和Terraform脚本, 使部署时间减少40%,手动配置错误减少25%. 这一贡献显著地简化了操作工作流程.
- 领导全面的Linux故障排除和优化计划, which improved system performance by 20%.
- Led a center migration project, 重新定位超过120个物理服务器和网络设备, 实现零停机和增强系统性能的无缝过渡.
Experience
Cloudflare – Web Application Firewall Transformation
Security Analytic and Automation Platform
此实现有助于保护客户数据(欺诈检测), mitigates threats faster with automated tasks, proactively identifies external threats, and monitors internal systems.
Secure WordPress Platform
http://www.ku.edu.trAsset Management
企业范围的漏洞评估和补救
KEY ACHIEVEMENTS
识别并记录了跨越不同系统的2000多个漏洞.
在第一个月内成功修复了95%的关键漏洞.
建立月度脆弱性评估程序,降低潜在风险80%.
Skills
Frameworks
Hadoop, Windows PowerShell, .NET, AWS HA
Libraries/APIs
RADIUS
Tools
Amazon CloudFront CDN, Grafana, Terraform, AWS CloudFormation, NGINX, VPN, Amazon EKS, Sumo Logic, Splunk, ELK (Elastic Stack), VMware, Prisma, Twistlock, Kibana, AWS CodeBuild, Helm, Azure Web Application Firewall, Amazon CloudWatch, Apache, Logstash, FirePower, Duo 2FA, Hyper-V, OpenVPN, Confluence, Jira, Azure App Service, GitLab CI/CD, Azure Key Vault, GitHub, Microsoft Teams, Ansible, Suricata, Jenkins, Azure Kubernetes Service (AKS), Git, CircleCI, Vault, Sentry, SonarQube, Amazon Elastic Container Service (Amazon ECS), MongoDB Atlas, Docker Compose, Docker Hub, GitLab, AWS ELB, Amazon Virtual Private Cloud (VPC), AWS CLI, AWS VLC, Amazon Simple Email Service (SES), AWS IAM, Azure DevOps Services, HashiCorp, Nessus, Accunetix Vulnerability Scanner
Paradigms
DevOps, Azure DevOps, Penetration Testing, Serverless Architecture, DDoS, DevSecOps, Continuous Integration (CI), Secure Code Best Practices, Security Orchestration, Automation, and Response (SOAR)
Platforms
Amazon Web Services (AWS), WordPress, Amazon EC2, Docker, Kubernetes, Azure, Linux, Google Cloud Platform (GCP), Windows, Windows Server, Microsoft, Rapid7, CentOS, AWS Lambda, Databricks, Unix, Burp Suite, New Relic, Duo, Harbor, AWS NLB, AWS ALB, Amazon, QualysGuard, Red Hat Linux, Linux RHEL/CentOS
Storage
Amazon S3 (AWS S3), Azure Active Directory, Datadog, Database Security, EMC DataDomain, Azure Cloud Services, Elasticsearch, Microsoft SQL Server, Databases, Data Centers, Redis, MySQL, Data Synchronization, AWS SWF, SUSE, Google Cloud
Industry Expertise
Cybersecurity, Network Security
Other
SIEM, Firewalls, Cloudflare, Vulnerability Management, Vulnerability Assessment, Checkpoints, Microsoft Azure, Web Security, DNS, Amazon Route 53, BIND DNS, Web Hosting, Load Balancers, Content Delivery Networks (CDN), Splunk Enterprise Security, Cloud, Cloud Security, Data Loss Prevention (DLP), Identity & Access Management (IAM), Data Encryption, Office 365, Site Reliability Engineering (SRE), Single Sign-on (SSO), Infrastructure as Code (IaC), Networks, Security, CI/CD Pipelines, Architecture, IT Security, Integration, Cloud Services, CISO, Cloud Infrastructure, Domain DNS Setup, DNS Configuration, Dynamic Host Configuration Protocol (DHCP), DNS Servers, IT Networking, Solution Architecture, AWS Certified Solution Architect, Fortinet Firewall Configuration, Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), IDS/IPS, Data Protection, Compliance, Amazon RDS, F5 Networks, TCP/IP, Check Point, System Administration, Security Architecture, Threat Intelligence, System Architecture, AWS DevOps, Cloud Architecture, AWS Certified DevOps Engineer, DevOps Engineer, Information Security, SecOps, Lansweeper, Network Configuration, IT Infrastructure, System-on-a-Chip (SoC), Cloud Migration, Networking, Infrastructure, IIS, SOC 2, Shell Scripting, Security Policies & Procedures, Google Workspace, Software Development Lifecycle (SDLC), Agile DevOps, Configuration Management, Containers, IT Systems Engineering, Security Audits, Security Management, ISO 27001, Azure Service Bus, Analytics, CISM, CISSP, Security Engineering, IT Governance, Governance, Data Governance, Container Orchestration, Web Servers, WiFi, Cisco AnyConnect, Microsoft 365, DHCP, Kerberos, IaaS, Scalability, Orchestration, Cloud Engineering, Fraud Prevention, CAPTCHA, Windows Subsystem for Linux (WSL), Server Infrastructure, Troubleshooting, Email Systems, Domains & Hosting, Email Delivery, Email, Email Marketing, SMTP, AWS VPN, GDPR, Monitoring, Data Center Infrastructure, Linux Administration, Patch Deployment, WordPress Installation, Leadership, CyberArk, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), NIST, Threat Modeling, Azure Resource Manager (ARM), Containerization, Risk Management, Palo Alto Networks, APIs, OWASP Top 10, Web App Security, OWASP, Data-level Security, Active Directory Synchronization, User Authentication, Group Policy Management, Group Policy, Active Directory Federation, Cisco, Argo CD, Deployment, Google Vault, Canary Releases, SOC Compliance, Application Security, Unix Shell Scripting, Artificial Intelligence (AI), Microsoft Azure Cloud Server, Web Application Firewall (WAF), Threat Analytics, Migration, Palo Alto Demisto, Prometheus, Palo Alto Prisma Cloud, IoC, Okta, Orca Security, Security Analysis, Security Operations Centers (SOC), Digital Forensics, IoT Security, Critical Security Controls (CIS Controls), Snyk, Risk Assessment, RHEL, SAP Basis, AWS Cloud Security
Languages
SAML, Bash Script, Python 3, Python
Education
Master's Degree in Cybersecurity
Akhmet Yassawi University - Turkey
Master's Degree in Forensic Investigation
International Dublin University - Ireland
Certifications
HashiCorp Ambassador 2023
HashiCorp
AWS Certified SysOps Administrator — Associate
Amazon Web Services
AWS Certified Security — Specialty
Amazon Web Services
AWS Certified Solutions Architect – Professional
Amazon Web Services
Certified Information Security Manager (CISM)
ISACA
Microsoft Certified: Azure Solutions Architect Expert
Microsoft
Microsoft Certified: DevOps Engineer Expert
Microsoft
AWS Certified Solutions Architect – Associate
Amazon Web Services
Microsoft Certified: Azure Administrator Associate
Microsoft
微软认证:安全运营分析师助理
Microsoft
Microsoft Cybersecurity Architect
Microsoft
微软365认证:安全管理员助理
Microsoft
微软认证:Azure安全工程师助理
Microsoft
How to Work with Toptal
在数小时内,而不是数周或数月,我们的网络将为您直接匹配全球行业专家.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring