Mehmet Eren Buyru

Cybersecurity Leader | IT Advisory & Compliance Expert

About

Highly accomplished Cybersecurity Leader with over a decade of experience in IT environments, currently serving as a CISO. Proven expertise in developing and executing robust cybersecurity strategies, leading high-performing teams, and driving comprehensive IT advisory, penetration testing, and compliance initiatives. Adept at leveraging advanced problem-solving skills to identify root causes, mitigate risks, and implement innovative solutions that safeguard critical information systems and data.

Work Experience

Cyber Security, Executive (CISO)

Edenred Turkey

May 2023 - Present

Istanbul, TR

Leads comprehensive cybersecurity initiatives, developing and executing strategies to protect information systems and data while managing a team of professionals.

  • Developed and executed robust, organization-wide cybersecurity strategies, enhancing the protection of critical information systems and data.
  • Managed and mentored a team of cybersecurity professionals, improving threat detection, incident response capabilities, and overall team performance.
  • Conducted comprehensive risk assessments and implemented proactive mitigation measures, significantly reducing identified security vulnerabilities.
  • Led critical incident response efforts for security breaches and cyber-attacks, minimizing impact and ensuring business continuity.
  • Collaborated cross-functionally to establish and enforce stringent security policies and procedures, ensuring organization-wide compliance.
  • Performed regular security audits and penetration tests, identifying weaknesses and fortifying the organization's security posture.
  • Designed and delivered cybersecurity training programs to employees, fostering a security-conscious culture and ensuring adherence to industry standards.

IT Advisory, Senior Manager

KPMG Turkey

Sep 2022 - Apr 2023

Istanbul, TR

Led IT advisory projects with a focus on Cyber Security Services, managing project teams and ensuring high-quality deliverables for diverse clients.

  • Managed and guided project teams, assigning tasks, reviewing deliverables, and providing expert assistance to ensure successful project execution and client satisfaction.
  • Specialized in delivering Cyber Security Services, advising clients on best practices and solutions for complex security challenges.
  • Contributed to the firm's reputation in IT advisory by consistently delivering high-quality, impactful cybersecurity consulting.
  • Maintained a focus on cutting-edge cyber security services, ensuring clients were protected against emerging threats.

IT Advisory, Manager

KPMG Turkey

Jun 2021 - Sep 2022

Istanbul, TR

Managed IT advisory projects with a primary focus on Cyber Security Services, overseeing team tasks and ensuring project success for various clients.

  • Led project teams, providing guidance, task assignment, and review to ensure efficient delivery of IT advisory services and client objectives were met.
  • Concentrated on Cyber Security Services, advising clients on best practices and solutions for their security challenges.
  • Facilitated seamless project workflows by coordinating team efforts and stakeholder communications.
  • Ensured project deliverables met KPMG's quality standards and client expectations.

Information Security, Cyber Security Senior Specialist (Red Team Leader)

BTCTrader (BtcTurk)

Feb 2021 - Jun 2021

Istanbul, TR

Led the Red Team within the Information Security department, focusing on application and infrastructure security for a cryptocurrency trading platform.

  • Supervised and led the Red Team, enhancing security for BtcTurk's trading platform and critical infrastructure against advanced threats.
  • Conducted advanced application and infrastructure security tests, identifying critical vulnerabilities and strengthening defensive mechanisms.
  • Performed comprehensive penetration testing and compliance assessments, ensuring adherence to industry best practices and regulatory requirements.
  • Contributed to the overall security posture of a high-stakes cryptocurrency platform, protecting user assets and data.

IT Advisory, Senior Consultant

KPMG Turkey

Sep 2019 - Feb 2021

Istanbul, TR

Supervised and guided project teams within IT Advisory, focusing on Cyber Security Services and ensuring efficient project delivery.

  • Supervised project teams, providing guidance, assigning tasks, and reviewing work to ensure high-quality IT advisory deliverables.
  • Focused on delivering Cyber Security Services, supporting clients in achieving robust security postures and compliance.
  • Managed project timelines and resources effectively, contributing to the successful completion of advisory engagements.
  • Mentored junior team members, fostering their professional growth in complex IT advisory projects.

IT Advisory, Consultant

KPMG Turkey

Oct 2018 - Sep 2019

Istanbul, TR

Executed IT advisory projects, focusing on design and operating effectiveness of business processes, cyber security assessments, and compliance frameworks.

  • Executed IT advisory projects, enhancing the design and operating effectiveness of business processes for diverse clients.
  • Conducted and managed Sarbanes-Oxley (SOX) related testing, ensuring the adequacy of internal controls within client organizations.
  • Performed cyber security assessments, identifying vulnerabilities and recommending mitigation strategies to strengthen client defenses.
  • Conducted IT internal audits, ISO27001, and ITGC projects, ensuring compliance with industry standards and regulatory requirements.
  • Analyzed business processes and implemented Robotic Process Automation (RPA) workflows, automating key business processes for increased efficiency.
  • Assisted in SAP GRC implementation projects, contributing to enhanced governance, risk, and compliance frameworks.

IT Advisory, Analyst

KPMG Turkey

Oct 2016 - Sep 2018

Istanbul, TR

Supported IT advisory projects, gaining foundational experience in cyber security, IT internal audit, and compliance assessments.

  • Assisted in IT advisory projects, supporting the execution of design and operating effectiveness assessments for business processes.
  • Contributed to cyber security assessments, identifying potential risks and supporting the development of mitigation plans.
  • Participated in IT internal audit, ISO27001, and ITGC projects, learning compliance frameworks and best practices.
  • Supported the analysis of business processes and the implementation of RPA workflows, contributing to automation initiatives.
  • Gained hands-on experience in RPA, penetration testing, COBIT, SOX, and ISO 27001 assessments, forming a strong technical base.

Telecommunication Support Department (IT Internship)

ProTim İletişim

Aug 2014 - Sep 2014

TR

Gained practical experience in telecommunication support, assisting with department operations and technical tasks.

  • Supported the Telecommunication Support Department, assisting with daily operations and technical troubleshooting.
  • Learned about telecommunication systems and network infrastructure through hands-on involvement.

IT Internship

Comodo Inc.

Jun 2014 - Jul 2014

TR

Participated in IT operations at Comodo Inc., focusing on various aspects of information technology.

  • Assisted IT teams with various tasks, gaining exposure to real-world IT environments and security practices.
  • Supported day-to-day IT operations, contributing to system maintenance and user support.

IT Internship

Hisar School

Jun 2013 - Aug 2013

Istanbul, TR

Gained initial IT experience at Hisar School, supporting technical operations and learning foundational IT skills.

  • Provided IT support for school systems, assisting with hardware and software maintenance.
  • Learned about basic network configurations and user support in an educational setting.

Education

Mobile Computing and Communication Networks

University of Leeds

Sep 2015 - Sep 2016

Leeds, United Kingdom, GB

Computer Engineering

Istanbul Bilgi University

2.98/4.00

Sep 2011 - Jun 2015

Istanbul, TR

General Studies

Hisar School High School

Sep 2006 - Jun 2011

Istanbul, TR

Certificates

UiPath Advanced RPA Developer Certificate

UiPath

Jan 2023

TSE Certified Senior Penetration Tester (TSE Kıdemli Sızma Testi Uzmanı)

Turkish Standards Institution

Jan 2023

CEH v11 Training

EC-Council

Jan 2023

UiPath Advanced RPA Trainings

UiPath

Jan 2023

ISO27001 Lead Auditor Certificate

ISO

Jan 2023

ISO22301 Lead Auditor Certificate

ISO

Jan 2023

ITIL Foundation

AXELOS

Jan 2023

StackSkills, Python 3 For Offensive PenTest

StackSkills

Jan 2023

StackSkills, The complete Cyber Security Course, Vol. 1 Hackers Exposed

StackSkills

Jan 2023

IELTS Certificate

British Council

Jan 2016

Goethe Institute German Language Certificate (A2)

Goethe-Institut

Jan 2016

Microsoft Office Products

Microsoft

Jan 2015

Arduino Programming

Self-Study

Jan 2015

Adobe Photoshop and Dreamweaver Certificate

Adobe

Jan 2015

Computer Programming

Academic

Jan 2015

SuperCamp Turkey ITU

SuperCamp

Aug 2009

LSE Summer School – Global Young Leaders

London School of Economics

Aug 2007

Projects

Network Congestion Control Project - University of Leeds

Jan 2016 - Dec 2016

A dissertation project involving research on network congestion control methods, specifically developing a new model using Software Defined Networking Technologies.

iOS Game Development

Jan 2016 - Dec 2016

Developed an iOS game using Swift programming language during studies at the University of Leeds.

Vehicle Crash Avoidance Systems

Jan 2015 - Dec 2015

An undergraduate dissertation project focused on developing a new prototype crash avoidance system using Arduino and an R/C car.

Network Infrastructure Plan and Deployment for a Health Company

Jan 2015 - Dec 2015

Developed and implemented a comprehensive network infrastructure plan for a health company in Istanbul.

Languages

English , German , Turkish

Skills

Cybersecurity & Information Security

  • Cyber Security Strategy
  • Threat Detection & Response
  • Risk Assessment & Mitigation
  • Incident Response
  • Security Audits
  • Penetration Testing
  • Vulnerability Scanning
  • Security Policies & Procedures
  • Compliance Assessments (ISO 27001, COBIT, SOX, ITGC, KVKK)
  • Application Security
  • Infrastructure Security
  • Red Teaming
  • WAF & Load Balancer Configuration (Cloudflare)
  • Kubernetes Security Controls
  • Networking Infrastructure Management
  • IT Risk Analysis

IT Advisory & Consulting

  • IT Advisory
  • Business Process Analysis & Digitalization
  • RPA Process Design & Development (UiPath Studio)
  • SAP GRC Implementation
  • IT Internal Audit
  • Client Management
  • Consulting

Programming & Development

  • C Programming
  • Objective C Programming
  • Swift Programming
  • JAVA Programming
  • Arduino Programming
  • Computer Programming
  • UiPath Studio
  • RPA Development

Cloud & Infrastructure

  • Cloud Computing (OpenNebula, Open Stack)
  • Big Data (Hadoop, Spark)
  • Communication Networks and Architecture
  • Cisco Network Configuration
  • Networking Infrastructure Management
  • Computer OS (Macintosh OS, Windows, Linux)

Project & Team Management

  • Team Leadership
  • Project Planning & Management
  • Team Scheduling & Task Distribution
  • Cross-functional Collaboration
  • Stakeholder Engagement
  • Mentorship

Software & Tools

  • Microsoft Office
  • UiPath Studio
  • Adobe Photoshop
  • Dreamweaver
  • Cloudflare
  • SDN Simulators

Interests

Hobbies

  • Playing piano
  • Watching movies
  • Photography
  • Making model airplanes and cars

Financial & Technology Trends

  • Technology News and Innovations
  • Cryptocurrency
  • Stock markets
  • Investing