This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Founded in 2017, Paribu has been playing a key role in the development of Türkiye’s crypto asset ecosystem by delivering innovative blockchain-based products and services. It offers a fast, easy, and secure exchange experience with more than 210 crypto assets. In 2024, Paribu introduced Paribu Custody, one of the few globally digital asset custody solutions tailored for institutional clients. At the same time, Paribu offers a secure self-custody experience for individuals and startups through its next-generation crypto wallet solution, Paribu Self. Beyond its mission to increase blockchain adoption, Paribu is committed to shaping the future by actively supporting culture, arts, sports, and education. Paribu provides a working environment where ideas turn into reality, and innovation thrives. Here, you'll work alongside talented professionals, tackle exciting challenges, and contribute to meaningful projects that align with Paribu’s vision of delivering fast, easy, and secure experiences.
Job Responsibility
Providing independent, risk-based assurance over the organization's information security controls, governance processes, and compliance posture
Leading technical and process-level security audits across infrastructure, applications, cloud environments, and third-party services
Evaluating whether security controls are appropriately designed, implemented, and operating effectively
Identifying control gaps and security risks, providing practical, risk-based recommendations to strengthen the control environment
Validating remediation efforts and verifying the effectiveness of corrective actions
Supporting regulatory, certification, and internal audit requirements by ensuring compliance with applicable security standards and frameworks
Delivering clear, evidence-based audit reports that enable leadership to make informed risk decisions
Contributing to the continuous improvement of the organization's security governance, audit methodology, and overall control maturity
Requirements
Strong knowledge of information security frameworks, including ISO 27001, NIST CSF, NIST 800-53, CIS Controls, PCI DSS, and SOC 2
Experience conducting information security audits and evaluating technical and operational controls
Solid understanding of IT General Controls (ITGC), including access management, change management, and IT operations
Knowledge of cloud security auditing across AWS, Azure, and GCP environments
Understanding of application security principles, including authentication, authorization, and secure development practices
Familiarity with network and infrastructure security concepts such as firewalls, segmentation, logging, and monitoring
Experience with risk assessment methodologies, control testing, audit sampling, and evidence evaluation
Working knowledge of security technologies including SIEM, IAM, EDR, DLP, and vulnerability management solutions
Understanding of regulatory and compliance requirements, including GDPR and other applicable security regulations
Excellent analytical thinking and structured problem-solving skills
Strong written and verbal communication skills with the ability to present technical findings to diverse stakeholders
Professional skepticism with the confidence to challenge assumptions while maintaining objectivity and independence
High attention to detail and disciplined documentation practices
Ability to manage multiple audits and competing priorities effectively
Strong collaboration and stakeholder management skills across security, technology, compliance, and business teams
Adaptability to evolving technologies, regulatory requirements, and emerging cyber threats
Demonstrates integrity, confidentiality, and sound ethical judgment in all audit activities