π Hi, I'm Mehmet Fatih Kocalar β a cybersecurity professional with 12+ years of experience doing one thing: making organizations harder to attack and faster to recover when they are.
π― My work sits at the intersection of technical depth and strategic clarity. I've led SOC operations, built vulnerability management programs from scratch, designed cloud security architectures across hybrid and cloud-native environments, and guided organizations through ISO 27001, NIST, and PCI-DSS compliance β not as checkbox exercises, but as genuine risk reduction.
π The sectors I've worked across β fintech, energy, telecommunications, technology, critical infrastructure, health tech, and medical education β share a common thread: the cost of getting security wrong is existential. That reality keeps my work grounded.
π€ Open to conversations about security strategy, team building, and complex risk challenges.
| Area | Focus |
|---|---|
| π Threat Detection & IR | Leading SOC teams through high-pressure incidents and building playbooks that reduce response time and noise |
| βοΈ Cloud & Enterprise Security | Designing security frameworks for hybrid, cloud-native, and legacy environments |
| π Compliance & Risk Alignment | Translating ISO 27001, SOC2, NIST CSF, and PCI-DSS into practical controls that reduce actual risk |
| π‘οΈ Vulnerability Management | Building and maturing programs that prioritize what matters, not just what's loud |
| π€ Cross-Functional Leadership | Bridging the gap between technical teams and business stakeholders so security decisions stick |
