Betül Ertem Yıldız
Partner - Governance, Risk & Compliance
In addition to business needs, increasing regulatory requirements, sector-specific regulations increase the compliance efforts of organizations. Many legislations, standards, frameworks or good practices sometimes require the implementation of common and sometimes different controls. As a result of these developments, different departments in the organization are increasingly forced to separate compliance processes to carry out and manage them.
With our subject matter experts and consultants with audit competence, we analyze the compliance needs of our customers and offer integrated compliance solutions based on the real data of the organization.
The main IT, information security, and cybersecurity compliance requirements for which we offer consulting and digital solutions include, but are not limited to:
- General legislation
- CMB
- DDO
- KVKK/GDPR
- Industry-specific regulatory requirements
- BRSA
- EMRA
- Civil Aviation
- TAPDK
- Authorized Obligor
- Standards, frameworks, good practices
- ISO 27001
- CobiT
- PCI/DSS
- SANS CSC
- Relevant NIST standards
