Cyber Security and Risk Management Leader

Our employees are the source of our strength.

With the vision of being Turkey’s most valuable and most preferred industrial company, we would like you to help us grow!

We are looking for Cyber Security Lead in our Digital Products & Services (Information Technology) Organization! to ensure the security of our company’s digital assets, information systems, and operational technologies (IT/OT); and to establish and execute an information security strategy aligned with corporate objectives.

Location is based on Kocaeli or Istanbul with hybrid working model.

• Develop, implement, and continuously improve information security and cyber security strategies.
• Ensure compliance with national and international standards (ISO 27001, NIST, KVKK, IEC62443, etc.) and manage information security processes in internal and external audits.
• Fulfill requirements for vehicle cyber security, including UNECE R155 and TISAX.
• Identify cyber security risks and manage preventive and corrective action plans.
• Manage supplier cyber risk processes.
• Provide regular reporting to senior management and relevant stakeholders.
• Design security architecture for IT and OT environments.
• Ensure proper management of security infrastructure products with correct policies (Zero Trust, IAM, SOC, SIEM, EDR/XDR).
• Coordinate Security Operations Center (SOC), incident response, and crisis management processes.
• Manage security teams and external service providers.
• Coordinate business continuity and Disaster Recovery processes in compliance with regulations.
• Lead company-wide training and communication programs to increase security awareness.
• Manage DevSecOps processes, ensuring robust application and data security throughout the software development lifecycle, including secure coding practices, vulnerability management, and data protection controls.

• Bachelor’s degree (preferably a master’s) in information security, computer engineering, or related fields.
• At least 10 years of experience in information security and cyber security, with 5 years in senior management.
• Advanced knowledge of standards and frameworks such as ISO 27001, COBIT, NIST, TISAX.
• Preferred: Internationally recognized certifications such as CISSP, CISM, CISA, CEH.
• Strong leadership, strategic thinking, and crisis management skills.
• Excellent problem-solving and analytical skills,
• Strong follow-up and planning skills,
• Strong communication skills and ability to work with multidisciplinary teams,
• Excellent command of written and spoken English.

"The only criterion evaluated in the recruitment and employment is suitability for the job; equal opportunity is provided without any discrimination."

Ford Otosan, being one of the top three exporting companies in Turkey since 2004, has achieved 12 consecutive years of automotive industry championship and is Turkiye goods product export champion for 8 years in a row. Ford Otosan operates in 4 main centers with its Gölcük and Yeniköy Plants in Kocaeli, Eskişehir Plant in Eskişehir, Sancaktepe R&D Center and Spare Parts Warehouse in İstanbul and Craiova Plant in Romania employs more than 20,000 people. Kocaeli and Eskişehir Plants are listed among Ford's 'Best Vehicle Production Centers' and Eskişehir is the only factory in Turkiye that can produce vehicles, engines, and powertrains in the same center.

Ford Otosan, standing out with its sensitivity regarding social responsibilities, also carries out several social responsibility projects in many fields including education, healthcare, culture, arts, and sports on “Future. Now” vision. Ford Otosan, also carrying out awareness studies on gender equality since 2013 with the understanding of "Equality at Work", became the only automotive and the first and only industrial company from Turkiye to be included in the Bloomberg Gender-Equality Index in 2021.

The building blocks of our new corporate culture, which we call “Dynamic Balance”, our values are mutual trust and respect, value each other and affection, openness to change and innovation, open and transparent communication.

A common culture brings us to a common sense and purpose, helps us to work in a positive atmosphere of trust, ties us closer and helps us to reach a stronger future all together.