Information Security Engineer

Who are we?

Our business is technology, food and retail. We are a young team that combines all resources with technology; Our goal is to provide an excellent e-commerce service to meet your needs. In short, you can call us Migros One. 😉

Today, as a team that holds the “Great Place To Work” certificate with the contributions of our employees we produce, learn and develop together. We rediscover our passion for our business every day and build Migros One culture together.

Our Culture

We are #ONE to create a better tomorrow for our community. Our way of working includes four core values that we strive to act:

1. Take accountability with passion

2. Drive innovation with curiosity

3. Make a difference for our customers

4. Create open communication

We live these values every day and create an environment where everyone enjoys working. Our business culture based on trust, openness and innovation has been recognized with our “Great Place To Work” certificate!

What Do We Do?

As Migros One; We spread happiness in being the pioneer of innovation in the field of food and retail technology with our brands Migros Sanal Market, Migros Hemen, Migros Extra, Migros Yemek, Macroonline, Tazedirekt, Mion and Petimo!

Our determination to find fast and effective solutions always keeps us one step ahead. Our team's passion and energy make their jobs enjoyable.

Thanks to our people-oriented approach, we aim to create a more comfortable and practical world for everyone by using them all. We constantly strive to provide the best experience to our consumers and employees!As Migros One team, we get excited with every member of our team creating his/her own career story!

If you would like to be a part of this visionary and tech-savvy e-commerce team, don’t wait! Make your application!

We are looking for Information Security Engineer who will be on our team.

What You'll Be Doing:

• Develop, implement, and monitor Information Security policies, procedures, and best practices across the organization,
• Provide guidance and review for security plans, system categorization, security control selection, and security assessments,
• Identify, analyze, and mitigate security risks, acting as both advisor and auditor for information security compliance,
• Hands-on experience with firewalls, intrusion detection/prevention (IDS/IPS), anti-virus, WAF, VPN, NAC, and content filtering solutions,
• Perform continuous analysis of security technologies, identifying weaknesses and improvement areas,
• Lead incident management processes, including detection, response, containment, and reporting,
• Maintain and optimize security tools and technologies to ensure robust protection,
• Conduct regular audits, compliance checks, and policy reviews to ensure adherence to internal and external standards.

What You'll Bring:

• 5+ years of experience in information and network security, focusing on policy building, implementation, and operations,
• Strong expertise in network security technologies: Firewalls, IPS/IDS, WAF, VPN, NAC,
• Knowledge of security hardening techniques, secure development methodologies, and best practices,
• Solid understanding of network protocols (TCP/IP, UDP, HTTP/S, DNS) and related security controls,
• Experience with Cloud Security (Azure, AWS, GCP) and Container Security/DevSecOps practices,
• Familiarity with compliance standards (PCI-DSS, KVKK, ISO 27001) and audit processes,
• Experience with Palo Alto and Microsoft security solutions is a strong plus,
• Strong analytical, problem-solving, and communication skills.