Burak Güçer
Part-time Contractor/Principal Auditor
Experience
Oct 2021 - Sep 2022
1 year Germany
Lorem ipsum dolor sit amet
Konvekta AG
- Managed project planning and execution.
- Conducted TISAX assessment.
- Established information security management, including organization, documentation, and technical measures.
- Improved measures to achieve AL3 certificate.
Oct 2021 - Dec 2021
3 months Lorem ipsum dolor sit amet
International Airport Sabiha Gökçen (SAW)
- Conducted CIS CSAT assessments.
- Delivered SMS consultancy involving service processes design, transition, and delivery.
- Managed incident, problem, and relationship management processes.
- Developed service reporting and budgeting models.
Oct 2021 - Oct 2021
1 month Bonn, Germany
Lorem ipsum dolor sit amet
GiZ (Gesellschaft für Internationale Zusammenarbeit) GmbH
- Managed gap analysis using BSI-Grundschutzkompendium.
- Designed and implemented worldwide ISO27001 and ISO27701 management systems.
- Advised local ISMS teams in regions APLAK and EMEA.
Jun 2021 - Jun 2021
1 month Lorem ipsum dolor sit amet
InCyTect GmbH
- Performed vulnerability analysis and developed a roadmap to close identified weaknesses.
- Provided monetary estimates for measures to be implemented.
Mar 2020 - Dec 2020
10 months Lorem ipsum dolor sit amet
Odelo
- Conducted SMS consultancy covering various service processes.
- Performed TISAX assessments.
- Improved measures to achieve AL3 certificate based on ISO27001 standards.
Nov 2019 - Dec 2020
1 year 2 months Turkey
Lorem ipsum dolor sit amet
Borusan Enerji
- Delivered SMS consultancy involving service design, transition, and delivery processes.
- Organized incident and problem management processes.
- Oversaw configuration and change management.
- Coordinated relationship management processes, service reporting, and budgeting/accounting for services.
- Performed gap analysis based on ISO27019 (OT Security).
- Conceptualized and implemented measures to close OT Security gaps.
- Assessed BCM program and validated Business Impact Analysis.
- Developed concepts for BCM and business resilience.
Sep 2019 - Nov 2021
2 years 3 months Lorem ipsum dolor sit amet
AL-KOR
- Conducted TISAX assessments.
- Improved measures to achieve AL2 certificate.
- Ensured privacy compliance.
Sep 2019 - Sep 2019
1 month Lorem ipsum dolor sit amet
ISKEN (STEAG 1 Beteiligungs-GmbH)
- Designed service processes related to SMS consultancy.
- Handled incident, problem, and change management processes.
- Contributed to relationship management processes and service reporting.
- Conducted gap analysis on ISO27019 (OT Security).
- Developed OT Security concepts and implemented necessary measures.
- Assessed BCM program and validated Business Impact Analysis.
- Organized ISO27001 and ISO27002 trainings.
Oct 2018 - Dec 2020
2 years 3 months Lorem ipsum dolor sit amet
Axa Insurance
- Provided SMS consultancy including service design, transition, and delivery processes.
- Managed incident and problem management processes.
- Conducted configuration and change management.
- Performed relationship management processes, service reporting, and budgeting/accounting for services.
- Analyzed gaps based on ISO27001 and Global InfoSec policies.
- Assessed Information Security Management System (ISMS) after closing gaps.
- Evaluated PCI-DSS compliance and privacy standards.
- Conducted supplier audits.
Jan 2016 - Dec 2020
3 years Lorem ipsum dolor sit amet
Coşkunöz Holding
- Provided SMS consultancy covering service design, transition, and delivery.
- Established ISMS implementation and performed TISAX assessments.
- Improved measures for achieving AL2 certification.
- Ensured privacy compliance.
May 2016 - Nov 2019
3 years 7 months Turkey
Part-time Contractor/Principal Auditor
SGS Turkey
- Conducted 140+ audits as an accredited Lead Auditor (ISO27001, ISO27701, ISO20000-1, ISO22301).
- Delivered seminars covering topics like Information Security Management, Cybersecurity, Risk Management, and Business Continuity.
- Created new business opportunities during events and seminars.
Apr 2010 - May 2012
2 years 2 monthsManaging Partner
Consulting Associates International, LLC
- Focused on program and project management, risk analysis, business optimization, and process consultancy.
- Specialized in implementing Cobit, ITIL, ValIT, and Risk IT frameworks.
- Managed profits/losses alongside client relations and business development.
Nov 2007 - Mar 2010
2 years 5 months Goslar, Germany
Chief Information Security Officer
H.C. Starck Group
- Led group-wide Information Security.
- Coordinated IS-security staff deployment.
- Oversaw network, intellectual property, and computer systems safeguarding.
- Maintained relationships with law enforcement and government agencies.
- Conducted investigations of security breaches.
- Executed awareness programs.
Jan 2001 - Oct 2007
6 years 10 months Ingolstadt, Germany
CISO
AUDI AG
- Aligned information security with business strategy.
- Conducted strategic risk management.
- Led Computer Emergency Response Team.
- Monitored and audited governance performance metrics.
- Held annual risk assessments and quarterly audits.
- Managed staff awareness programs.
Jan 1999 - Aug 2001
1 year 8 months İstanbul, Turkey
Information Security Officer
Turkcell AS
- Developed and maintained security guidelines, standards, and policies.
- Promoted uninterrupted operation of computer-based systems.
- Conducted security strategy alignment and group-wide employee training.
- Managed practices following BS7799 Standard.
Sep 1998 - Aug 2000
2 years İstanbul, Turkey
Sr. Project Manager & Supervisor
Vis AS
- Handled sales and project management for security and network solutions.
- Signed partnerships like Network Associates Consultancy Group (McAfee).
- Managed IT improvement projects across prominent Turkish enterprises.
Jun 1988 - Aug 2000
12 years 3 months İstanbul, Turkey
Cofounder & Shareholder
Simpleks AS
- Managed third-party support and system integration operations.
- Expanded business into IT security and CAD/CAE product lines.
- Collaborated with Gartner's representative in Turkey.
- Directed sales channels focusing on enterprise accounts.
Jun 1985 - Jun 1988
3 years 1 month İstanbul, Turkey
Senior System Engineer (Supervisor)
Baytur SA (Geneva)
- Provided internal client support related to computing issues within Cukurova Holding.
Jun 1983 - Jun 1985
2 years 1 month İstanbul, Turkey
Software Engineer (Team Leader)
Kavi Kablo AS
- Developed custom ERP/CAM software to support manufacturing operations.
- Optimized the inventory process for semi-product management.
Summary
A results-driven, seasoned C-Level executive with 40+ years of business expertise, specializing in Service Management, Information Security, and Audit and Compliance. Renowned for designing and implementing comprehensive Service Management Systems (SMS) that optimize delivery processes, enhance customer satisfaction, and ensure compliance with international standards. Proven success in leading service design, transition, and operational excellence for global organizations, including Volkswagen, Audi, and Borusan Enerji.
Service Management Expertise
- Service Design, Transition, and Delivery Processes: Established frameworks for seamless service lifecycle management aligned with ISO 20000-1 standards.
- Incident and Problem Management: Delivered swift resolutions to minimize downtime and enhance operational efficiency.
- Configuration and Change Management: Implemented structured approaches to manage assets and mitigate risks during service changes.
- Service Level Management: Defined, negotiated, and achieved service levels that exceeded client expectations.
- Service Reporting and Budgeting: Designed metrics-driven reporting systems to track performance and optimize service costs.
Security Management Expertise
- Information Security Management: Designed and implemented robust ISMS frameworks in line with ISO 27001, ISO 27701, and TISAX standards.
- Risk Management: Conducted comprehensive risk assessments and developed mitigation strategies to protect assets and minimize threats.
- Compliance and Audit: Led 140+ certification audits across ISO standards, ensuring organizations meet regulatory and industry-specific requirements.
- Cyber Defense Strategies: Developed and implemented global cybersecurity programs to defend against evolving threats.
- Operational Resilience: Enhanced organizational continuity through effective security measures and business impact analysis.
Achievements in Service Management and Security Management
- ISO 20000-1 Compliance: Successfully developed and implemented SMS frameworks for multiple international clients.
- Operational Efficiency: Improved service delivery processes, reducing costs and increasing client satisfaction.
- Global Impact: Enabled service transformation projects for organizations across Europe, the Middle East, and Asia.
- TISAX Certification: Guided clients to achieve TISAX AL3/AL2 certifications through robust service processes.
- Implemented comprehensive ISMS solutions aligned with ISO and NIST frameworks.
- Achieved risk and cost reduction through process re-design and optimization.
- Conducted 140+ audits as an accredited Lead Auditor.
- Designed and established cyber defense teams for international clients.
Languages
German
Native
Turkish
Native
English
Advanced
Education
Oct 1985 - Jun 1992
Technical University of Istanbul
Electrical Engineering · İstanbul, Turkey
Oct 1977 - Jun 1985
German High-school Istanbul
İstanbul, Turkey
Certifications & licenses
CISA
ISACA
Certified Advanced IT Project Manager
Certified IT Security Manager
ISMS Lead Auditor ISO 27001:2013
BSI Management Systems (UK)
ISMS Lead Auditor ISO 27001:2022
CFE/CPD
ISO 27701 Lead Auditor
CFE/CPD
ISO 9001:2015 Lead Auditor
SGS UK
PCIP
Payment Card Industries
Similar Freelancers
Discover other experts with similar qualifications and experience