About the Team
At Trendyol Tech, our mission is to create a positive impact in our ecosystem by enabling commerce through technology.
We solve complex problems with data, creativity, and agility — always driven by real outcomes. With a culture built on learning, collaboration, and ownership, we grow together while building what’s next.
About the Role
As a Cybersecurity and Compliance Engineer, you'll be responsible for developing and implementing security policies to ensure compliance with banking regulations like BDDK and PCI-DSS. You will identify and manage security risks, conduct audits, and ensure new features are built securely. Your expertise in data security will be key to protecting sensitive information and maintaining a strong security posture across our infrastructure.
Expected Qualifications
Proven experience in the banking/financial sector, with familiarity with BDDK regulatory requirements.
Strong knowledge of security risk management, security architecture, and data security solutions.
In-depth understanding of operating systems, network infrastructure, firewalls, and database security.
Familiarity with international compliance and security frameworks (ISO 27001, NIST, PCI-DSS, GDPR, KVKK).
Demonstrated ability to design security solutions to address business challenges in a regulated environment.
Excellent analytical thinking, communication, and presentation skills.
Strong problem-solving and consultative approach.
Responsibilities
Develop, implement, and maintain security policies, standards, guidelines, and procedures.
Identify and assess security risks, create action plans, and monitor their implementation.
Ensure compliance with BDDK, TCMB, KVKK, GDPR, PCI-DSS, ISO 27001, and other relevant regulations.
Participate in and support periodic audits, compliance assessments, and control activities.
Contribute to security awareness programs.
Monitor and manage third-party/vendor-related security risks.
Conduct security assessments and technical reviews for new features.
Apply strong expertise in data security, including DLP, DAM, data encryption, and data classification.
Provide guidance on secure architecture design across IT infrastructure layers.
Stay current with industry trends, security standards, and technology advancements.
What We Offer
- Hybrid working model with flexibility: a schedule that helps you find the right balance between flexibility and team bonding, including work-from-abroad opportunities and a summer working model.
- Customisable FlexBenefits budget: Adjust your daily meal allowance, choose your health insurance package (and extend it to your spouse or children), and pick from additional benefits like fuel support or Trendyol shopping credits.
- Well-being support: Access to location-based in-house doctors, as well as psychologist and dietitian support, and HPV vaccination provision.
- Personalised training allowance and learning opportunities: Use your annual budget for any training or conference of your choice, explore our Learning Management System (LMS) anytime, and join in-person learning sessions offered throughout the year.
- Responsibility from day one: Take full ownership from the start in a culture where every voice is heard and valued.
- A diverse, international team: Collaborate with global peers across our offices in Berlin, Amsterdam, Dubai, and beyond, in a startup-spirited and collaborative environment.
- Opportunities to grow with the best: Tackle meaningful challenges, develop through hands-on experience, and grow with the support of expert guidance and global mentoring.
- Meaningful connections beyond tasks: Be part of team rituals, events, and social activities that help us stay connected and inspired.
Take the Next Step
If this role excites you, apply today, we look forward to taking the next step with you.
