Hi, I'm Ahmet!
I'm a cyber security engineer focused on securing large-scale cloud and critical infrastructure systems. I specialize in threat modeling, cloud-native security architecture, and automating defenses across hybrid OT/IT and Kubernetes environments, with hands-on DevSecOps experience.
Recent on my blog
Work History
I worked at Enerjisa Üretim on security architecture for hybrid environments, focusing on IAM, and infrastructure hardening. I also supported OT security through pentesting, vulnerability management, and SAST/DAST integration in SSDLC processes.
I worked at BtcTurk on security operations across Azure, AWS, and on-prem environments, focusing on cloud hardening, CSPM, security baseline enforcement, and DevSecOps practices. I also contributed to incident response, vulnerability management, and breach attack simulations in a Purple Team setting.
I worked at Veri Security on digital forensics, assisting law enforcement with evidence analysis and investigation in cybercrime and fraud cases.
Certifications
CCSP
IN PROGRESSCertified Cloud Security Professional
Open Source Projects
CSPM Tool - Open-source Cloud Security Posture Management tool for multi-cloud environments. Automated security compliance checks, real-time drift detection, and remediation playbooks for AWS and Azure infrastructures.
Cloud CIS Benchmark Controller - Kubernetes operator that continuously monitors and enforces CIS benchmarks across cloud resources. Features automated remediation, Slack alerts, and compliance reporting dashboards.
Kubectl Scripts Collection - Curated collection of kubectl scripts for security auditing, RBAC analysis, and rapid incident response in Kubernetes clusters. Includes automated pod security policy validation and network policy generators.
Azure Pentest Automation Framework - Python-based framework automating Azure security assessments. Performs automated reconnaissance, privilege escalation checks, and generates detailed vulnerability reports with MITRE ATT&CK mapping.