Career Summary

Mert is a well-known and respected Cyber Security Researcher, Speaker and Blogger.

As of 2020 October, Mert is an Executive Vice President / CISO of IT Security & Risk Management Group at Intertech. (Information Technology subsidiary of DenizBank)

In January 2018 – September 2020 as the Vice President, Mert was responsible for the management of Akbank‘s Cyber Defence Center (CDC) which incorporates Vulnerability Management, Threat Detection, Threat Response & Intel and Security Engineering teams. (26 HCs)

In 2007 – 2017 Mert was responsible for performing and managing penetration tests, malware analysis, security incident detection and response as a Technical Lead in Threat & Vulnerability Management team at IBTech. (Information Technology subsidiary of QNB Finansbank)

In 2014 – 2016 Mert instructed Malware Analysis course in Cyber Security Graduate Program at Bahcesehir University.

In 2003 Mert’s career journey began by discovering a security vulnerability on the e-portal web application of the Yeditepe University where he was studying at that time. After sharing his findings with the executives of the university, he was awarded with an achievement grant and recruited as an Ethical Hacker. Mert graduated from Yeditepe University, Information Systems and Technologies in 2006 and Yeditepe University, Master of Business Administration program in 2010.

From the beginning of 2011 Mert spoke at more than 30 technical cyber security conferences. In addition, he was invited as a guest speaker to more than 40 universities to share his cyber security career journey and his profession “Ethical Hacker” to the students as a role model.

For more information about his professional background, you may visit his LinkedIn profile.

Certificates
2020 – CCISO (Certified Chief Information Security Officer)
2013 – CEREA (Certified Expert Reverse Engineering Analyst)
2010 – CREA (Certified Reverse Engineering Analyst)
2009 – OPST (OSSTMM Professional Security Tester)
2009 – OSCP (Offensive Security Certified Professional)
2007 – CISSP (Certified Information Systems Security Professional)
2006 – SSCP (Systems Security Certified Practitioner)

Trainings
2020 – Certified Chief Information Security Officer (EC-Council)
2020 – Risk Management Approach & Practices (EC-Council)
2020 – Certifed Project Manager (EC-Council)
2020 – SIEM with Tactical Analytics (SANS – SEC 555)
2020 – Blue Team Fundamentals: Security Operations and Analysis (SANS – SEC 450)
2019 – Security Strategic Planning, Policy, and Leadership (SANS – MGT 514)
2018 – The Security Automation Lab (Black Hat USA 2018)
2017 – Advanced Digital Forensics, Incident Response, and Threat Hunting (SANS – FOR 508)
2016 – Hardware Hacking With Hardsploit Framework (Black Hat USA 2016)
2015 – Exploit Laboratory: Black Belt (Black Hat USA 2015)
2014 – Advanced Penetration Testing, Exploits, and Ethical Hacking (SANS – SEC 660)
2013 – Advanced Reverse Engineering Malware (InfoSec Institute)
2012 – Reverse-Engineering Malware (SANS – FOR 610)
2011 – Computer Forensic Investigations – Windows In-Depth (SANS – FOR 408)
2010 – Reverse Engineering: Malware, Binary Analysis and Software Vulnerabilities (InfoSec Institute)
2009 – OSSTMM Professional Security Tester (ISECOM – OPST)
2009 – Pentesting with BackTrack (Offensive Security – OSCP)
2008 – Oracle Anti Hacker Training (Red-Database-Security)
2007 – ISO 27001 Lead Auditor (BSI)
2006 – ISO 27001 Implementation of Information Security Management (BSI)
2005 – Certified Ethical Hacker (EC-Council)

Presentations
2019 – Sandbox Detection (NOPcon Hacker Conference)
2019 – Backdoor Hunt (IstSec Information Security Conference)
2016 – 2017 Hunting Hackers with Custom Deception System – (Bilisim Zirvesi, Istanbul & Cyprus Cyber Security Conferences)
2016 – Malicious JavaScript Analysis – (Netsec)
2016 – Being a Penetration Tester and Career – (Cyber Security Winter Camp)
2015 – Homemade Cryptolocker Prevention Tool (CryptoKiller) – (IstSec Information Security Conference)
2015 – Cyber Attacks & Defence (International Internal Audit Conference (TIDE))
2015 – Firmware Analysis – (Hacktrick Information Security Conference)
2014 – Firmware Analysis – (IstSec Information Security Conference)
2013 – Anti Malware Analysis – (IstSec Information Security Conference)
2013 – Offensive Malware Analysis – (Euroforensics, Cyprus, IstSec Information Security Conference)
2012 – Importance Of Penetration Testing – (Netsec)
2012 – Android Mobile App Pentest – (NOPcon)
2012 – Android Malware Analysis – (Euroforensics)
2011 – 2019 How to Become an Ethical Hacker / Penetration Tester – (Universities)