Buğra Öğüt

Provided GRC consultancy to assess client maturity, identify gaps, prioritize risks, and prepare audit readiness for ISO/IEC and regulatory frameworks including ISO 27001, ISO 27701, ISO 20000, ISO 22301, IEC 62443, KVKK, NIST SP 800 series, and CIS Controls. Delivered cybersecurity maturity assessments and ISMS consulting engagements for domestic and international clients.

Supported governance, risk, compliance, and information security activities in a SaaS/technology-driven environment by improving risk controls, preparing audit evidence, and recommending internal process improvements. Helped align business processes with ISO 9001, ISO 27001, ISO 27701, ISO 22301, and KVKK requirements.

Improved compliance posture and information security governance by strengthening internal processes, documentation, and audit readiness for security, data protection, risk management, and business continuity requirements. Developed policies and procedures and supported customer security/compliance expectations aligned to ISO standards and GDPR/KVKK.

Planned, conducted, and reported ISO 27001 ISMS internal audits for BTYÖN's clients. Produced audit results and supported assessment activities across diverse client industries.

Supported ISO 9001, ISO 20000, ISO 27001, and ITIL-based management systems through process analysis, documentation, and continuous improvement activities. Helped align internal processes and controls with KVKK/GDPR personal data protection requirements.

Managed governance, risk, compliance, and information security activities by improving compliance posture, security practices, internal processes, documentation, and audit readiness. Supported alignment with ISO 27001 and GDPR/KVKK requirements for risk management and business continuity.

Supported quality management, process governance, documentation, internal audit preparation, and compliance-related activities in the energy management sector. Coordinated corrective/preventive action tracking and audit evidence management to support continuous improvement and customer expectations.

Supported enterprise IT services environments with ISO-based management system activities, including quality management, information security, internal audits, and governance documentation. Contributed to implementation, maintenance, and improvement of ISO 9001, ISO 27001, and ISO 20000-aligned processes and certification readiness.

Supported quality management and process improvement in automotive manufacturing through documentation, internal control activities, and corrective action management. Performed process reviews and contributed to root cause analysis, corrective/preventive action follow-up, and continuous improvement.

Established and applied the AQAP-2120 NATO Quality Management System in a maintenance center command environment and trained military and civilian personnel. Produced QMS documentation including quality manual content, policies, procedures, plans, instructions, and templates.

Provided client consultancy for ISO 9001, ISO 14001, and ISO 45001 management systems. Supported management system adoption through advisory and implementation guidance.

Grade: GPA: 3.11/4.00

Completed a BSc in Management Information Systems at Anadolu University (2019–2023), with a GPA of 3.11/4.00.

Grade: GPA: 92/100

Earned an MSc in Engineering Management (with thesis) at Marmara University (2003–2005), with a GPA of 92/100.

Grade: GPA: 2.94/4.00

Completed a BSc in Industrial Engineering at Dokuz Eylül University (1999–2003), with a GPA of 2.94/4.00.