currently @ Enerjisa Üretim · securing critical infrastructure

Ahmet Kulekci

cyber security architect · istanbul

I'm a cyber security engineer focused on securing large-scale cloud and critical infrastructure systems. I work across threat modeling, cloud-native security architecture, and automating defenses over hybrid OT/IT and Kubernetes environments, with hands-on DevSecOps experience.

//RECENT BLOGS ON MEDIUM

loading recent posts…

→ all posts on Medium ↗

//WORK HISTORY 2020 — NOW

Enerjisa Üretim

Working on security architecture for hybrid environments, focusing on IAM, and infrastructure hardening. I also supported OT security through pentesting, vulnerability management, and SAST/DAST integration in SSDLC processes.

2024 — present

BtcTurk

Worked on security operations across Azure, AWS, and on-prem environments, focusing on cloud hardening, CSPM, security baseline enforcement, and DevSecOps practices. I also contributed to incident response, vulnerability management, and breach attack simulations in a Purple Team setting.

2021 — 2024

Veri Security

Worked on digital forensics, assisting law enforcement with evidence analysis and investigation in cybercrime and fraud cases.

2020 — 2021

//CERTIFICATIONS 07 ITEMS

Certified Cloud Security Professional

CCSP · (ISC)²

In progress

Read notes

Certified Container Security Expert

CCSE · Practical DevSecOps

2025.12

Verify link

Certified Red Team Lead

CRTL · Zero-Point Security

2025.06

Verify link

Certified Red Team Operator

CRTO · Zero-Point Security

2025.04

Verify link

Microsoft Azure Security Engineer

AZ-500 · Microsoft

2023.04

Verify link

Microsoft Cyber Security Architect

SC-100 · Microsoft

2023.04

Verify link

Cyber Threat Intelligence Analysis

CTIA · EC-Council

2023.02

Verify link

//PROJECTS 04 ITEMS

cspm · posture

✓encryption at rest

✓mfa enforced

✕public storage

✓least privilege

CSPM Tool

Open-source Cloud Security Posture Management tool for multi-cloud environments. Automated security compliance checks, real-time drift detection, and remediation playbooks for AWS and Azure infrastructures.

CloudCSPM

cis · controller

Cloud CIS Benchmark Controller

Kubernetes operator that continuously monitors and enforces CIS benchmarks across cloud resources. Features automated remediation, Slack alerts, and compliance reporting dashboards.

KubernetesGo

kubectl

$ kubectl get pods

api-7f9c Running

scan-job Pending

audit-rbac Running

Kubectl Scripts Collection

Curated collection of kubectl scripts for security auditing, RBAC analysis, and rapid incident response in Kubernetes clusters. Includes automated pod security policy validation and network policy generators.

KubernetesBash

recon · attack path

Azure Pentest Automation Framework

Python-based framework automating Azure security assessments. Performs automated reconnaissance, privilege escalation checks, and generates detailed vulnerability reports with MITRE ATT&CK mapping.

PythonAzure

//CONTACT GET IN TOUCH

contact@ahmets.io→

Based in Istanbul, working remote. Open to security-engineering work, collaborations, and conversations about cloud, OT, and DevSecOps.

GitHub ↗ LinkedIn ↗ Twitter ↗ Medium ↗