Deniz D.

CEO

London, England, United Kingdom19 yrs experience

Highly Stable

Key Highlights

Over 20 years of cybersecurity leadership experience.
Achieved an 85% increase in NIST-800 score.
Successfully led cybersecurity transformations for major organizations.

Stackforce AI infers this person is a Cybersecurity expert with extensive experience in enterprise risk management and compliance.

Contact

Skills

Core Skills

CybersecurityRisk Management

Other Skills

Cyber Threat Intelligence (CTI)Business ResilienceSecurity TrainingMicrosoft AIPSecurity Information and Event Management (SIEM)Cloud SecurityThreat & Vulnerability ManagementVulnerability ScanningCISAISO 27001 Lead AuditorSentinelMicrosoft DefenderMicrosoft Entra IDActive DirectorySecurity Operations Center

About

A results-oriented and business-focused cybersecurity leader with over 20 years of experience, a proven ability to translate complex security requirements into actionable, business-aligned strategies. Proven track record in developing and hands-on approach in implementing multi-year security programs that have measurably enhanced security postures at major organizations (Argus Media, Vodafone, public sector). Expertise in elevating cybersecurity maturity scores, managing enterprise-wide risk, and ensuring global regulatory compliance including GDPR, HIPAA, NIST, DORA, CFIUS, PCI-DSS and ISO 27001. A strong leader with demonstrated success in crisis management, C-suite communication, motivating stakeholders across the business and building high-performing teams.

Experience

Security architecture ltd.

2 roles

VCISO / Cyber Security Consultant

Feb 2025 – Present · 1 yr 1 mo · Greater London, England, United Kingdom

Nov '25 - Present : VCISO - Finance
Apr '25 - Oct '25 : Lead Information Security Consultant, [AXA Insurance]
Providing expert cybersecurity guidance and strategic oversight for the multi-million dollar acceleration programme, including GRC , technical security controls and AI Security.
Leading stakeholders to ensure project compliance with critical security frameworks and regulatory requirements, including NIST, ISO27001, GDPR, CFIUS and HIPAA.

Cyber Threat Intelligence (CTI)Business ResilienceSecurity TrainingMicrosoft AIPSecurity Information and Event Management (SIEM)Cloud Security+95

VCISO / Cyber Security Consultant

Jul 2017 – Feb 2019 · 1 yr 7 mos · Greater London, England, United Kingdom · Hybrid

Sept '18 - Dec '18: Security and vulnerability assessment for critical infrastructure, Turkey [Confidential]
Apr '18-June '18: Product security and vulnerability assessment for a SOAR vendor, Turkey [Confidential]
Sept '17- Jan '18 : Strategic cyber security consultancy for one of the biggest bank , Turkey [Confidential]
July '17 - Sept '17 : Cyber Security Risk Assessment for 4G/4.5G and control GAP Analysis for a TelCo , Turkey [Confidential]

Cloud SecurityVulnerability ScanningTechnology RiskActive DirectoryCyber Threat Intelligence (CTI)Business Resilience+32

Argus media

Global Head Of Information Security (CISO)

Feb 2019 – Feb 2025 · 6 yrs · London, United Kingdom · Hybrid

Led the cybersecurity transformation at Argus Media, a $1B turnover commodity price reporting data company, reporting to the CTO/CRO and private equity partners. Focused on reviewing and enhancing the overall security maturity. Developed and executed a risk-based, cost-effective security strategy, including resource requirements, target operating model, delivery roadmap, execution plan, and budget approval. Worked as a contractor for 5 years, then transitioned to a permanent employee for 1 year.
Established from the ground up, security infrastructure for purely AWS infrastructure, by adopting the NIST-800 and ISO 27001 Security Frameworks, including: Global Network Security, Global Endpoint Protection (X/EDR), Global Patch Management, Global Log Collection (SIEM) and Security Operations Centre (SOC), Global Vulnerability Management, Third-Party/Vendor Assurance, Global Security Training and Awareness Programme, Global Identity Access Management (IDAM) Programme, Email Security, Data Security, Business Continuity (BCP) and Crisis Incident Management, related information security policies and procedures.
Established and led a comprehensive Security Operations Center (SOC) and incident management framework, reducing average incident response time by over 50%.
Improved security maturity across the organization, achieving an 85% increase in the NIST-800 score (from 2.3 to 9.0) by implementing a robust framework aligned with business goals.
Onboarded and led a high-performing team

Cloud SecurityVulnerability ScanningTechnology RiskActive DirectoryCyber Threat Intelligence (CTI)Business Resilience+48

Vodafone

3 roles

Technology Security Risk Manager

Promoted

Sep 2015 – Jul 2017 · 1 yr 10 mos

Adapted and implemented the Vodafone Global Cyber Security Baseline for the -Turkey Op-Co, building the framework and improving the cybersecurity score from 2.1 to 4.5 over 5.
Played a pivotal role in achieving and maintaining ISO 27001 Certification, demonstrating excellence in managing regulatory, compliance, and threat-based cybersecurity controls.
Maintained an impressive record of zero major incidents for 5,5 years, highlighting exceptional risk management and incident prevention skills.

Cloud SecurityVulnerability ScanningTechnology RiskActive DirectoryCyber Threat Intelligence (CTI)Business Resilience+37

Technology Security Senior Expert

Mar 2014 – Sep 2015 · 1 yr 6 mos

Vulnerability ScanningActive DirectoryTechnology ManagementTechnology SecurityCertified Information Security Manager (CISM)Information Security Awareness+20

Technology Security Expert

Jan 2012 – Mar 2014 · 2 yrs 2 mos

Vulnerability ScanningActive DirectoryTechnology SecurityInformation Security AwarenessSecurity ConsultingThreat & Vulnerability Management+16

National research institute of electronics and cryptology (uekae-tubitak)

Information Security Consultant

Jun 2006 – Jan 2012 · 5 yrs 7 mos · Gebze, Turkey

Employed a 'secure by design' approach to design, implement, test, and deliver secure networks for public and private sector clients.
Developed and implemented data loss prevention controls and policies, enhancing the security posture of numerous organizations.
Crafted and delivered comprehensive security policies and procedures aligned with cybersecurity frameworks like ISO 27001, ISO 22301, and NIST-800.
Conducted rigorous penetration tests on communication equipment, identified vulnerabilities, and proposed effective patches for encryption algorithms and design flaws.
Led Common Criteria certification tests ranging from EAL1 to EAL4+, ensuring stringent security standards were met and maintained.

Vulnerability ScanningActive DirectoryTechnology SecuritySecurity Architecture DesignStrategic ThinkingThreat & Vulnerability Management+15