Burak Gücer - Senior Consultant

Q: Where is Burak based?

Burak is based in Tallinn, Estonia and prefers 100% remote projects.

Q: What languages does Burak speak?

Burak speaks the following languages: Turkish (Native), German (Advanced), English (Advanced) .

Q: How many years of experience does Burak have?

Burak has at least 32 years of experience. During this time, Burak has worked in at least 7 different roles and for 8 different companies . The average length of individual experience is 4 years and 11 months . Note that Burak may not have shared all experience and actually has more experience.

Q: What is Burak's latest experience?

Burak's most recent position is Senior Consultant at Gucer O.U. .

Q: What companies has Burak worked for in recent years?

In recent years, Burak has worked for Gucer O.U. and EY GmbH Deutschland .

Q: Which industries is Burak most experienced in?

Burak is most experienced in industries like Information Technology (IT) , Professional Services , and Automotive . Burak also has some experience in Government and Public Administration , Metals and Mining , and Telecommunication .

Q: Which business areas is Burak most experienced in?

Burak is most experienced in business areas like Information Technology (IT) , Strategy and Planning , and Audit . Burak also has some experience in Quality Assurance (QA) and Project Management .

Q: Which industries has Burak worked in recently?

Burak has recently worked in industries like Government and Public Administration and Professional Services .

Q: Which business areas has Burak worked in recently?

Burak has recently worked in business areas like Information Technology (IT) , Strategy and Planning , and Project Management .

Recommended expert

Tallinn, Estonia

Experience

Jan 2025 - Present

1 year 2 months

Senior Consultant

Gucer O.U.

Developed and implemented DORA-compliant resilience frameworks
Designed and implemented NIS2 requirements
Conducted ICT risk assessments and scenario-based resilience tests
Integrated incident reporting according to DORA and EBA guidelines
Established third-party governance structures for outsourcing and cloud services
Developed strategic IT and business plans
Performed gap analyses and implementations of ISMS/DSMS
ISO/IEC 27001 lead auditing and multi-standard integration
Developed enterprise-wide information security and service management frameworks for international clients
Project management for GIZ (German Corporation for International Cooperation) GmbH in Bonn, Germany
Gap analysis based on the BSI IT Baseline Protection catalog and design and implementation of global ISO 27001 and ISO 27701 management systems
Advised local ISMS teams in the APLAK and EMEA regions
Management consulting, SMS consulting, and service design, transition, and delivery processes at AXA Insurance (Oct 2018 – Dec 2020)
Incident and problem management, configuration and change management, relationship management, and service reporting
Service budgeting and cost accounting, gap analysis according to ISO 27001 and global InfoSec policies, and evaluation of PCI-DSS compliance and data privacy
Management consulting and SMS consulting at Borusan Enerji – EnBW Turkey (Nov 2019 – Dec 2020)
Gap analysis based on ISO 27019 (OT Security), development and implementation of an OT security concept
Evaluated the BCM program, validated the business impact analysis, and developed concepts for BCM and business resilience
Management consulting, SMS consulting, and service processes at ISKEN (STEAG 1 Beteiligungs-GmbH) (Sep 2019)
Conducted ISO 27001 and ISO 27002 training
Management consulting, SMS consulting, and service processes at Odelo (Mar 2020 – Dec 2020)
TISAX assessment and improvement of controls to achieve AL 3 certification based on ISO 27001
CIS CSAT assessment and SMS consulting at Sabiha Gökçen International Airport (SAW) (Oct 2021 – Dec 2021)
Vulnerability analysis and roadmap to close identified gaps at InCyTect GmbH (Jun 2021)
Vulnerability analysis with monetary evaluation of measures
Performed certification audits on behalf of certification bodies such as SGS Turkey (May 2016 – Nov 2019) and CFE Certification (UK)

Jul 2022 - Present

3 years 8 months

Sub-Contractor / Senior Cybersecurity Consultant

EY GmbH Deutschland

Strategic IT and business consulting
Gap analyses and implementation of ISMS/DSMS
Executive advisory
Established a global ISMS based on ISO 27001 at GIZ GmbH

May 2016 - Nov 2019

3 years 7 months

Principal Auditor

SGS Türkei

Performed over 140 audits (ISO 27001, ISO 27701, ISO 20000-1, ISO 22301) as lead auditor
Conducted training and seminars on information security, cybersecurity, and BCM, and maintained computers

Apr 2010 - May 2012

2 years 2 months

Partner

Consulting Associates International, LLC

Consulting in IT governance, risk management, business continuity, and PCI-DSS

Nov 2007 - Mar 2010

2 years 5 months

CISO

H.C. Starck Gruppe

Led group-wide information security initiatives
Developed global security policies

Sep 2001 - Oct 2007

6 years 2 months

CISO

Audi AG

Strategic direction of information security
Leading the CERT team

Aug 2000 - Aug 2001

1 year 1 month

Information Security Officer

Turkcell A.S.

Developing security policies, standards, and awareness programs

Sep 1987 - Jun 2000

12 years 10 months

Managing Director

Simpleks A.S.

Establishing a system integrator and IT security company

Industries Experience

See where this freelancer has spent most of their professional time. Longer bars indicate deeper hands-on experience, while shorter ones reflect targeted or project-based work.

Experienced in Information Technology (13 years), Professional Services (6.5 years), Automotive (6 years), Government and Administration (3.5 years), Metals and Mining (2.5 years), and Telecommunication (1 year).

Information Technology

Professional Services

Automotive

Government and Administration

Metals and Mining

Telecommunication

Business Areas Experience

The graph below provides a cumulative view of the freelancer's experience across multiple business areas, calculated from completed and active engagements. It highlights the areas where the freelancer has most frequently contributed to planning, execution, and delivery of business outcomes.

Experienced in Information Technology (31.5 years), Strategy (3.5 years), Audit (3.5 years), Quality Assurance (3 years), and Project Management (1 year).

Information Technology

Strategy

Audit

Quality Assurance

Project Management

Summary

I am a consultant for information security, compliance, and AI governance, helping companies build and optimize their ISMS, PIMS, and AI management systems according to European and international standards.

My focus areas: ISO 27001, ISO 27701, ISO 27005, ISO 20000-1, ISO 22301, ISO 27032, ISO 31000, ISO 42001, DORA, NIS2, EASA Part-IS, and TISAX – aiming to guide organizations towards greater security, compliance, and digital and AI-related resilience.

With experience in aviation, finance, automotive, and technology, I combine technical security expertise with strategic business management to turn complex requirements into practical, value-adding measures.

Result-driven consultant – focused on certification, regulatory compliance, and building digital trust.

Skills

Cisa
Iso 27001
Iso 27005
Iso 27000
Iso 31000
Iso 22301
Bcm
Bsi It Baseline Protection
Dora
Nis 2
Iso 42001
Artificial Intelligence
Grc
Microsoft Office
Organizational And Planning Skills
Developing Problem-solving Strategies
Giving Constructive Feedback
Negotiating With Stakeholders
Prioritizing Tasks
Working In A Team
Iso 31000
Implementing Quality Management Systems
Security Threats
Cybersecurity
Establishing An Information Security Management System
Cyber Defence
Content Fundamentals Of Cybersecurity

Languages

Turkish

Native

German

Advanced

English

Advanced

Education

Sep 1985 - Jul 1992

Technical University of Istanbul

Electrical Engineering, B.Eng · Electricity and Energy · İstanbul, Turkey

Certifications & licenses

Cfe Certification (Uk)

Profile

Created

January 2025

Last Update

December 2025

Need a freelancer? Find your match in seconds.

Try FRATCH GPT

Frequently asked questions

Do you have questions? Here you can find further information.

Where is Burak based?

Burak is based in Tallinn, Estonia and prefers 100% remote projects.

What languages does Burak speak?

Burak speaks the following languages: Turkish (Native), German (Advanced), English (Advanced).

How many years of experience does Burak have?

Burak has at least 32 years of experience. During this time, Burak has worked in at least 7 different roles and for 8 different companies. The average length of individual experience is 4 years and 11 months. Note that Burak may not have shared all experience and actually has more experience.

What roles would Burak be best suited for?

Based on recent experience, Burak would be well-suited for roles such as: Senior Consultant, Sub-Contractor / Senior Cybersecurity Consultant, Principal Auditor.

What is Burak's latest experience?

Burak's most recent position is Senior Consultant at Gucer O.U..

What companies has Burak worked for in recent years?

In recent years, Burak has worked for Gucer O.U. and EY GmbH Deutschland.

Which industries is Burak most experienced in?

Burak is most experienced in industries like Information Technology (IT), Professional Services, and Automotive. Burak also has some experience in Government and Public Administration, Metals and Mining, and Telecommunication.

Which business areas is Burak most experienced in?

Burak is most experienced in business areas like Information Technology (IT), Strategy and Planning, and Audit. Burak also has some experience in Quality Assurance (QA) and Project Management.

Which industries has Burak worked in recently?

Burak has recently worked in industries like Government and Public Administration and Professional Services.

Which business areas has Burak worked in recently?

Burak has recently worked in business areas like Information Technology (IT), Strategy and Planning, and Project Management.

What is Burak's education?

Burak holds a Bachelor in Electricity and Energy from Technical University of Istanbul.

Does Burak have any certificates?

Burak has 1 certificate: Cfe Certification (Uk).

What is the availability of Burak?

Burak is immediately available part-time for suitable projects.

What is the rate of Burak?

Burak's rate depends on the specific project requirements. Please use the Meet button on the profile to schedule a meeting and discuss the details.