About:

Yapı Kredi Technology is a technology company that produces innovative, high quality, and high value-added products and solutions in the finance sector. With more than 2,000 employees, it aims to create products that will shape the sector for Yapı Kredi Bank and to be the undisputed leader in the field of technology by using modern architectural systems and cloud technologies. It also contributes to the development of new and exemplary products for the sector by using natural language processing, machine learning, artificial intelligence, and data mining technologies with its R&D team.

Who We Are:

At Yapı Kredi Technology, we research with passion, wonder as we learn, and implement innovations that shape the future together. We take responsibility from the first day with our expert colleagues and work with all our strength for pioneering applications. We make quick decisions and take action. We quickly adapt to innovations and changes.

What Do We Offer:

📌 Opportunity to work in hybrid model

💻Opportunity to work in Koç Group Community Companies' offices

🌴Chance to discover the natural wonders and amenities offered at Koç Toplululuğu Spor Kulübü (KTSK)

🚀Career development opportunities in a structured technology career path

🎓 Unlimited access to more than 10,000 content on the Percipio by Skillsoft technical development platform

💫 Opportunity to benefit from BizClub and KoçAilem privileges exclusive to Yapı Kredi Technology employees

🤝Company-contributed individual retirement insurance

🎂 Birthday off day.

Qualifications:

• Minimum 4 years experience in Software Development and/or Security related positions
• Bachelor’s degree in Computer, Electronics, Communication Engineering, Mathematics or relevant fields
• Master’s degree in Cyber Security of relevant field is a plus.
• Openness to the continuous acquisition of new skills and competencies.
• Stays current with latest cyber security threats and vulnerabilities
• Experience in Application Penetration testing (web, mobile, API, thick client etc.) and source code security analysis

Pluses:

• Holding an Offensive Security or Application Security related Certificate preferred
• Familiarity with web application frameworks, API technologies, and micro services preferred
• Experience with programming languages such as C, C#, Java, and Python preferred

Job Description:

• Perform application security assessments such as web application, mobile application and API penetration tests.
• Perform threat modeling and design reviews as part of the Secure software development lifecycle and provide feedback to development teams on matters of Cyber Security
• Performing comprehensive and technical analysis of detected vulnerabilities
• Performing analysis, reviewing findings, tune, and set policies within application security (SAST, DAST, IAST, SCA etc.) solutions
• Perform network penetration tests and execute Red Team/Purple Team activities as needed
• Automate security testing at scale (DevSecOps)
• Participate in setting up, configuring and maintaining security tools on CI/CD infrastructure (DevSecOps)
• Taking active role in internal process, procedure and standard development studies.

Candidate Selection Process:

Our recruitment process for all positions typically encompasses technical interviews, director assessments, competency evaluations, and personality tests. We will extend our offer to candidates who have successfully completed a positive evaluation process.

6698 sayılı Kişisel Verilerin Korunması Kanunu kapsamında kişisel verilerinizin işlenmesinden doğan haklarınıza ve bu konudaki detaylı bilgiye https://kariyerim.yapikredi.com.tr/Account/StaticKvkk adresinde yer alan aydınlatma metnimizden ulaşabilirsiniz.