• Consult, design, plan and implement complex technical projects. • Work closely with the Principal Technical Consultants and other technical teams. • Support the Sales and Solutions teams to provide the technical expertise required to close sales opportunities. • Create and deliver technical presentations, solution demonstrations, solution design/configuration, and proposal development. • Acts as a mentor and technical escalation point in all areas where they are considered a subject matter expert. • Creation of technical documentation Low Level Designs High Level Designs Diagrams, BoM Statement of Works (SoW). • Design, implementation, migration and testing of technical solutions. • Works with clients on assigned projects to identify commercially viable, technical, solutions to business problems.

• Identify and translate inherent and residual risk through likelihood, impact, treatment plans, and ownership. • Define and track risk and awareness key metrics to measure program effectiveness and communicate to leadership and governance committees. • Conduct and manage enterprise information security risk assessment through recognized frameworks (including NIST 800-30) and maintain an information security risk register. • Lead third-party security risk assessments for vendors, partners, and service providers through analysis of assurance documentation, security testing summaries, and security questionnaires. • Maintain the information security risk register and third-party vendor risk inventory to track and monitor ongoing risks and approved exceptions. • Develop and lead enterprise security awareness training, including phishing simulations and targeted role-based training for security education and reporting. • Support internal and external security and compliance assessments through risk evidence and documentation. • Partner closely with organizational functions and key stakeholders to understand and address organizational risks across systems and processes, and ensure security risks are understood, prioritized, and treated in alignment with organizational risk appetite.

• Own end-to-end compliance strategy and build a comprehensive compliance roadmap aligned with business objectives • Conduct risk assessments and identify compliance risks specific to SaaS business models; develop mitigation strategies • Establish and maintain compliance processes, procedures, and documentation; ensure adherence to regulatory frameworks • Build compliance programs from ground up and coordinate compliance audits and assessments • Work closely with legal, engineering, product, and business teams to provide compliance guidance • Manage relationships with external compliance consultants and auditors • Lead compliance training initiatives across the organization • Provide insights and opinions on compliance risks and opportunities in the SaaS industry

• We are looking for a highly motivated and detail-oriented Information Security Specialist to join our growing security team. The ideal candidate will be responsible for ensuring the organization’s compliance with security standards such as ISO 27001 and SOC 2 Type 2, managing business continuity processes, and supporting security governance on AWS environments. This role requires a proactive mindset, strong technical knowledge, and a good understanding of both internal IT systems and regulatory frameworks like KVKK and GDPR. • Drive the implementation and continuous improvement of the ISO 27001 Information Security Management System (ISMS) • Conduct and document internal audits and follow up with action plans • Coordinate and enhance business continuity and disaster recovery processes • Support SOC 2 Type 2 compliance efforts and evidence collection • Provide governance support for AWS infrastructure and cloud security configurations • Collaborate with internal Red Team and Blue Team to follow up on technical findings • Maintain, update, and implement security policies, standards, and procedures • Plan and execute security awareness programs (training, campaigns, gamification, etc.) • Assess third-party security through security assurance reviews • Support security incident handling and security reporting processes • Provide input on privacy regulations (KVKK, GDPR) and ensure alignment with global policies • Act as a security consultant to business units and IT teams