Burak Gücer - Senior Consultant

Q: Where is Burak based?

Burak is based in Tallinn, Estonia and prefers 100% remote projects.

Q: What languages does Burak speak?

Burak speaks the following languages: Turkish (Native), German (Advanced), English (Advanced) .

Q: How many years of experience does Burak have?

Burak has at least 32 years of experience. During this time, Burak has worked in at least 7 different roles and for 8 different companies . The average length of individual experience is 4 years . Note that Burak may not have shared all experience and actually has more experience.

Q: What is Burak's latest experience?

Burak's most recent position is Senior Consultant at Gucer O.U. .

Q: What companies has Burak worked for in recent years?

In recent years, Burak has worked for Gucer O.U. and EY GmbH Germany .

Q: Which industries is Burak most experienced in?

Burak is most experienced in industries like Information Technology , Professional Services , and Automotive . Burak also has some experience in Government and Administration , Metals and Mining , and Telecommunication .

Q: Which business areas is Burak most experienced in?

Burak is most experienced in business areas like Information Technology , Strategy , and Audit . Burak also has some experience in Quality Assurance and Project Management .

Q: Which industries has Burak worked in recently?

Burak has recently worked in industries like Government and Administration and Professional Services .

Q: Which business areas has Burak worked in recently?

Burak has recently worked in business areas like Information Technology , Strategy , and Project Management .

Recommended expert

Tallinn, Estonia

Experience

Jan 2025 - Present

1 year 3 months

Senior Consultant

Gucer O.U.

Developing and implementing DORA-compliant resilience frameworks
Developing and implementing NIS2 requirements
Conducting ICT risk assessments and scenario-based resilience tests
Integrating incident reporting according to DORA and EBA guidelines
Building third-party governance structures for outsourcing and cloud services
Developing strategic IT and business plans
Performing gap analyses and implementing ISMS/DSMS
ISO/IEC 27001 lead auditing and multi-standard integration
Developing enterprise-wide information security and service management frameworks for international clients
Project management at GIZ (Deutsche Gesellschaft für Internationale Zusammenarbeit) GmbH in Bonn, Germany
Gap analysis according to the BSI IT Baseline Protection Compendium and design as well as implementation of global ISO 27001 and ISO 27701 management systems
Advising local ISMS teams in the APLAK and EMEA regions
Management consulting, SMS consulting, and service design, transition, and delivery processes at AXA Insurance (Oct 2018 – Dec 2020)
Incident and problem management, configuration and change management, relationship management, and service reporting
Budgeting and cost accounting for services, gap analysis according to ISO 27001 and global InfoSec policies, and assessment of PCI-DSS compliance and data protection
Management consulting and SMS consulting at Borusan Enerji – EnBW Turkey (Nov 2019 – Dec 2020)
Gap analysis based on ISO 27019 (OT security), developing and implementing an OT security concept
Assessing the BCM program, validating the business impact analysis, and developing concepts for BCM and business resilience
Management consulting, SMS consulting, and service processes at ISKEN (STEAG 1 Beteiligungs-GmbH) (Sep 2019)
Conducting ISO 27001 and ISO 27002 trainings
Management consulting, SMS consulting, and service processes at Odelo (Mar 2020 – Dec 2020)
TISAX assessment and enhancement of measures to achieve the AL 3 certificate based on ISO 27001
CIS CSAT assessment and SMS consulting at Sabiha Gökçen International Airport (SAW) (Oct 2021 – Dec 2021)
Vulnerability analysis and roadmap to close identified weaknesses at InCyTect GmbH (Jun 2021)
Vulnerability analysis with monetary evaluation of measures
Conducting certification audits on behalf of certification bodies such as SGS Turkey (May 2016 – Nov 2019) and CFE Certification (UK)

Jul 2022 - Present

3 years 9 months

Sub-Contractor / Senior Cybersecurity Consultant

EY GmbH Germany

Strategic IT and business consulting
Gap analyses and implementation of ISMS/DSMS
Advising executives
Building a global ISMS based on ISO 27001 at GIZ GmbH

May 2016 - Nov 2019

3 years 7 months

Principal Auditor

SGS Turkey

Conducting 140+ audits (ISO 27001, ISO 27701, ISO 20000-1, ISO 22301) as lead auditor
Training and seminars on information security, cybersecurity, and BCM, as well as computer maintenance

Apr 2010 - May 2012

2 years 2 months

Partner

Consulting Associates International, LLC

Consulting in IT governance, risk management, business continuity, and PCI-DSS

Nov 2007 - Mar 2010

2 years 5 months

CISO

H.C. Starck Group

Leading group-wide information security initiatives
Developing global security policies

Sep 2001 - Oct 2007

6 years 2 months

CISO

Audi AG

Strategic direction of information security
Leadership of the CERT team

Aug 2000 - Aug 2001

1 year 1 month

Information Security Officer

Turkcell A.S.

Development of security policies, standards and awareness programs

Sep 1987 - Jun 2000

12 years 10 months

Managing Director

Simpleks A.S.

Establishment of a system integrator and IT security company

Industry Experience

See where this freelancer has spent most of their professional time.

Experienced in Information Technology, Professional Services, Automotive, Government and Administration, Metals and Mining, and Telecommunication.

Information Technology

Professional Services

Automotive

Government and Administration

Metals and Mining

Telecommunication

Business Area Experience

See which departments and functions this freelancer has contributed to most.

Experienced in Information Technology, Quality Assurance, Strategy, Audit, and Project Management.

Information Technology

Quality Assurance

Strategy

Audit

Project Management

Summary

I am a consultant for information security, compliance, and AI governance who helps companies build and optimize their ISMS, PIMS, and AI management systems according to European and international standards.

My focus areas: ISO 27001, ISO 27701, ISO 27005, ISO 20000-1, ISO 22301, ISO 27032, ISO 31000, ISO 42001, DORA, NIS2, EASA Part-IS, and TISAX – with the goal of guiding organizations towards greater security, compliance, and digital as well as AI resilience.

With experience in aviation, finance, the automotive industry, and technology, I combine technical security expertise with strategic business leadership to turn complex requirements into practical, value-adding measures.

Result-oriented consultant – focused on certification, legal compliance, and building digital trust.

Skills

Cisa
Iso 27001
Iso 27005
Iso 27000
Iso 31000
Iso 22301
Bcm
Bsi It Baseline Protection
Dora
Nis 2
Iso 42001
Artificial Intelligence
Grc
Microsoft Office
Organizational And Planning Skills
Developing Problem-solving Strategies
Providing Constructive Feedback
Negotiating With Stakeholders
Prioritizing Tasks
Working In A Team
Iso 31000
Implementing Quality Management Systems
Security Threats
Cybersecurity
Creating An Information Security Management System
Cyber Defence
Content Fundamentals Of Cybersecurity

Languages

Turkish

Native

German

Advanced

English

Advanced

Education

Sep 1985 - Jul 1992

Istanbul Technical University

Electrical Engineering, B.Eng · Electricity and Energy · İstanbul, Turkey

Certifications & licenses

Cfe Certification (Uk)

Statistics

Experience

Total positions 8

Experience in Information Technology 13 y

Avg length 4 y 1 m

Longest experience 12 y 9 m

Expertise

Recent roles Senior Consultant, Sub-Contractor / Senior Cybersecurity Consultant, Principal Auditor

Main industries Information Technology, Professional Services, Automotive

Main business areas Information Technology, Quality Assurance, Strategy

Qualifications

Highest degree Bachelor

Certifications earned 1

Profile

Created

January 2025

Last Update

March 2026

Need a freelancer? Find your match in seconds.

Try FRATCH GPT

Frequently asked questions

Do you have questions? Here you can find further information.

Where is Burak based?

Burak is based in Tallinn, Estonia and prefers 100% remote projects.

What languages does Burak speak?

Burak speaks the following languages: Turkish (Native), German (Advanced), English (Advanced).

How many years of experience does Burak have?

Burak has at least 32 years of experience. During this time, Burak has worked in at least 7 different roles and for 8 different companies. The average length of individual experience is 4 years. Note that Burak may not have shared all experience and actually has more experience.

What roles would Burak be best suited for?

Based on recent experience, Burak would be well-suited for roles such as: Senior Consultant, Sub-Contractor / Senior Cybersecurity Consultant, Principal Auditor.

What is Burak's latest experience?

Burak's most recent position is Senior Consultant at Gucer O.U..

What companies has Burak worked for in recent years?

In recent years, Burak has worked for Gucer O.U. and EY GmbH Germany.

Which industries is Burak most experienced in?

Burak is most experienced in industries like Information Technology, Professional Services, and Automotive. Burak also has some experience in Government and Administration, Metals and Mining, and Telecommunication.

Which business areas is Burak most experienced in?

Burak is most experienced in business areas like Information Technology, Strategy, and Audit. Burak also has some experience in Quality Assurance and Project Management.

Which industries has Burak worked in recently?

Burak has recently worked in industries like Government and Administration and Professional Services.

Which business areas has Burak worked in recently?

Burak has recently worked in business areas like Information Technology, Strategy, and Project Management.

What is Burak's education?

Burak holds a Bachelor in Electricity and Energy from Istanbul Technical University.

Does Burak have any certificates?

Burak has 1 certificate: Cfe Certification (Uk).

What is the availability of Burak?

Burak is immediately available part-time for suitable projects.

What is the rate of Burak?

Burak's rate depends on the specific project requirements. Please use the Meet button on the profile to schedule a meeting and discuss the details.